3 matches found
1WebCalendar 4.0 - newsnewsView.cfm?NewsID SQL Injection
1WebCalendar 4.0 - newsnewsView.cfm?NewsID SQL Injection source: https://www.securityfocus.com/bid/17193/info 1WebCalendar is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL...
HiveMail 1.2.21.3 - addressbook.update.php?contactgroupid Arbitrary PHP Command Execution
HiveMail 1.2.21.3 - addressbook.update.php?contactgroupid Arbitrary PHP Command Execution source: https://www.securityfocus.com/bid/16591/info HiveMail is prone to multiple vulnerabilities. These vulnerabilities may allow the execution of arbitrary PHP code, cross-site scripting attacks, and SQL...
saPHP Lesson - add.php?forumid SQL Injection
saPHP Lesson - add.php?forumid SQL Injection source: https://www.securityfocus.com/bid/15185/info saphp Lesson is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successf...