Galore Simple Shop 3.1 - section SQL Injection

Galore Simple Shop 3.1 - section SQL Injection source: https://www.securityfocus.com/bid/27977/info Simple Shop component for Joomla! and Mambo is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this...

Softbiz Jokes and Funny Pictures Script - sbcat_id SQL Injection

Softbiz Jokes and Funny Pictures Script - sbcatid SQL Injection source: https://www.securityfocus.com/bid/27973/info The Jokes and Funny Pictures script from Softbiz is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL...

Joomla! Mambo Component Referenzen - id SQL Injection

Joomla! Mambo Component Referenzen - id SQL Injection source: https://www.securityfocus.com/bid/27926/info The Joomla! and Mambo Referenzen component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting...

XOOPS Tiny Event 1.01 - print Option SQL Injection

XOOPS Tiny Event 1.01 - print Option SQL Injection source: https://www.securityfocus.com/bid/27931/info Tiny Event is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker...

Eagle Software Aeries Student Information System 3.7.2.2/3.8.2.8 - 'ClassList.asp?Term' SQL Injection

source: https://www.securityfocus.com/bid/27924/info Aeries Student Information System is prone to multiple input-validation vulnerabilities, including multiple SQL-injection issues and an HTML-injection issue, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues...

PHP-Nuke Classifieds Module - 'Details' SQL Injection

source: https://www.securityfocus.com/bid/27930/info The Classifieds module for PHP-Nuke is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

XOOPS prayerlist Module - cid SQL Injection

XOOPS prayerlist Module - cid SQL Injection source: https://www.securityfocus.com/bid/27934/info XOOPS 'prayerlist' module is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...

CVE-2007-6319

Multiple unspecified vulnerabilities in Lyris ListManager 8.x before 8.95d, 9.2 before 9.2c, and 9.3 before 9.3b allow remote attackers to 1 gain list administrator privileges or 2 access arbitrary mailing lists via unknown vectors related to modification of client-side information; and 3 allow...

Joomla! Component iJoomla! com_magazine - pageid SQL Injection

Joomla! Component iJoomla! commagazine - pageid SQL Injection source: https://www.securityfocus.com/bid/27888/info iJoomla 'commagazine' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting th...

PHP-Nuke Web_Links Module - 'cid' SQL Injection

source: https://www.securityfocus.com/bid/27894/info The PHP-Nuke WebLinks module is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application,...

Facile Forms 1.x - 'catid' SQL Injection

source: https://www.securityfocus.com/bid/27880/info Facile Forms is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

PHP-Nuke Web_Links Module - cid SQL Injection

PHP-Nuke WebLinks Module - cid SQL Injection source: https://www.securityfocus.com/bid/27894/info The PHP-Nuke WebLinks module is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow...

Joomla! Component iJoomla! com_magazine - 'pageid' SQL Injection

source: https://www.securityfocus.com/bid/27888/info iJoomla 'commagazine' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application...

Joomla! Mambo Component com_iigcatalog - cat SQL Injection

Joomla! Mambo Component comiigcatalog - cat SQL Injection source: https://www.securityfocus.com/bid/27883/info The Joomla! and Mambo 'comiigcatalog' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query...

Joomla! / Mambo Component com_formtool - 'catid' SQL Injection

source: https://www.securityfocus.com/bid/27884/info The Joomla! and Mambo 'comformtool' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise t...

Joomla! Mambo Component Filebase - filecatid SQL Injection

Joomla! Mambo Component Filebase - filecatid SQL Injection source: https://www.securityfocus.com/bid/27829/info The Joomla! and Mambo 'comfilebase' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query...

Yellow Swordfish Simple Forum 1.71.9 - index.php SQL Injection

Yellow Swordfish Simple Forum 1.71.9 - index.php SQL Injection source: https://www.securityfocus.com/bid/27824/info Simple Forum is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could all...

Dokeos 1.8.4 - mainadminsession_list.php?cmessage Cross-Site Scripting

Dokeos 1.8.4 - mainadminsessionlist.php?cmessage Cross-Site Scripting source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one...

Dokeos 1.8.4 - mainmySpaceindex.php?tracking_list_coaches_column SQL Injection

Dokeos 1.8.4 - mainmySpaceindex.php?trackinglistcoachescolumn SQL Injection source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one...

Yellow Swordfish Simple Forum 1.x - 'topic' SQL Injection

source: https://www.securityfocus.com/bid/27825/info Simple Forum is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...