CandyPress Store 3.5.2 14 - openPolicy.asp?policy SQL Injection

CandyPress Store 3.5.2 14 - openPolicy.asp?policy SQL Injection source: https://www.securityfocus.com/bid/21090/info CandyPress Store is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this...

CandyPress Store 3.5.2 14 - prodList.asp?brand SQL Injection

CandyPress Store 3.5.2 14 - prodList.asp?brand SQL Injection source: https://www.securityfocus.com/bid/21090/info CandyPress Store is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue...

Mega Mall - 'order-track.php?orderNo' SQL Injection

source: https://www.securityfocus.com/bid/21072/info Megamail is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access or...

AckerTodo 4.2 - login.php Multiple SQL Injections

AckerTodo 4.2 - login.php Multiple SQL Injections source: https://www.securityfocus.com/bid/20372/info ackerTodo is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could all...

PHP-Fusion 6.0.x - news.php SQL Injection

PHP-Fusion 6.0.x - news.php SQL Injection source: https://www.securityfocus.com/bid/19908/info PHP-Fusion is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker...

XennoBB 2.1 - profile.php Multiple SQL Injections

XennoBB 2.1 - profile.php Multiple SQL Injections source: https://www.securityfocus.com/bid/19374/info XennoBB is prone to multiple SQL injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in an SQL query. A successful attack could allow an attacker ...

SoftBizScripts Dating Script 1.0 - 'index.php' SQL Injection

source: https://www.securityfocus.com/bid/18605/info Softbiz Dating Script is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker to compromise the...

Woltlab Burning Board 1.22.02.3 - newthread.php?boardid SQL Injection

Woltlab Burning Board 1.22.02.3 - newthread.php?boardid SQL Injection source: https://www.securityfocus.com/bid/18597/info WoltLab Burning Board is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied data before...

SoftBizScripts Dating Script 1.0 - 'products.php' SQL Injection

source: https://www.securityfocus.com/bid/18605/info Softbiz Dating Script is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker to compromise the...

VBZoom 1.11 - forum.php SQL Injection

VBZoom 1.11 - forum.php SQL Injection source: https://www.securityfocus.com/bid/18472/info VBZooM is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow...

Abarcar Realty Portal 5.1.5 - content.php SQL Injection

Abarcar Realty Portal 5.1.5 - content.php SQL Injection source: https://www.securityfocus.com/bid/18218/info Abarcar Realty Portal is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query...

vBulletin 3.0.10 - 'Portal.php' SQL Injection

source: https://www.securityfocus.com/bid/18197/info vBulletin is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the...

MyBB 1.1.1 - 'showthread.php' SQL Injection

source: https://www.securityfocus.com/bid/17904/info MyBB is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful attack could allow an attacker to compromise the...

MyBB 1.1.1 - showthread.php SQL Injection

MyBB 1.1.1 - showthread.php SQL Injection source: https://www.securityfocus.com/bid/17904/info MyBB is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful attack could all...

Creative Software UK Community Portal 1.1 - 'DiscView.php?forum_id' SQL Injection

source: https://www.securityfocus.com/bid/17890/info Creative Community Portal is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an...

Invision Power Board 2.02.1 - index.php SQL Injection

Invision Power Board 2.02.1 - index.php SQL Injection source: https://www.securityfocus.com/bid/17839/info Invision Power Board is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query...

Invision Power Board 2.0/2.1 - 'index.php' SQL Injection

source: https://www.securityfocus.com/bid/17839/info Invision Power Board is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could allow an attacker to...

4Images 1.7.1 - 'member.php?sessionid' SQL Injection

source: https://www.securityfocus.com/bid/17748/info 4Images is prone to multiple, unspecified SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker...

Article Publisher 1.0.1 Pro - Multiple SQL Injections

source: https://www.securityfocus.com/bid/17595/info Article Publisher Pro is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker...

RechnungsZentrale 2 1.1.3 - Authent.php4 SQL Injection

RechnungsZentrale 2 1.1.3 - Authent.php4 SQL Injection source: https://www.securityfocus.com/bid/17588/info RechnungsZentrale V2 is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. ...