phpWebsite 0.8.2/0.8.3 friend.php sid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/17150/info phpWebSite is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. A successful exploit...

PersianBlog Userslist.ASP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14575/info PersianBlog is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could...

ActiveNews Manager activenews_search.asp query Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/21167/info Active News Manger is prone to multiple input-validation vulnerabilities, including SQL-injection issues and a cross-site scripting issue, because it fails to sufficiently sanitize user-supplied data. Exploitin...

PHP-Fusion 4.0/5.0/6.0 Options.php and Viewforum.php SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/15502/info PHP-Fusion is prone to SQL injection vulnerabilities in multiple PHP scripts. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query...

PHPBB 2.0.13 Linkz Pro Module SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13030/info The Linkz Pro mod for phpBB is reportedly affected by a SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query...

Shop-Script CategoryID SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13633/info Shop-Script is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could...

D3Jeeb Pro 3 fastlinks.php catid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/16853/info D3Jeeb is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation...

DeltaScripts PHP Classifieds 6.20 Member_Login.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/16642/info PHP Classifieds is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation...

DUware DUamazon Pro 3.0/3.1 review.asp iPro Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/14033/info DUamazon Pro is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful...

newsPHP 2006 PRO index.php Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/18726/info NewsPHP 2006 PRO is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properl...

PHP Arena PAFileDB Extreme Edition SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15912/info PAFileDB Extreme Edition is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...

W-Agora 4.2.1 search.php search_user Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/23057/info w-Agora is prone to multiple input-validation vulnerabilities, including possible SQL-injection issues and multiple cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data...

UBB.Threads <= 6.1.1 UBBThreads.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23369/info UBB.threads is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise t...

PBCS Technology - articlenav.php SQL Injection

PBCS Technology - articlenav.php SQL Injection source: https://www.securityfocus.com/bid/50577/info PBCS Technology is prone to an SQL Injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacke...

Admin Bot - &#039;news.php&#039; SQL Injection

source: https://www.securityfocus.com/bid/50562/info Admin Bot is prone to an SQL Injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify dat...

Admin Bot - news.php SQL Injection

Admin Bot - news.php SQL Injection source: https://www.securityfocus.com/bid/50562/info Admin Bot is prone to an SQL Injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise th...

In-link 2.3.45.1.3 RC1 - cat SQL Injection

In-link 2.3.45.1.3 RC1 - cat SQL Injection source: https://www.securityfocus.com/bid/49508/info In-link is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

Gilnet News - &#039;read_more.php&#039; SQL Injection

source: https://www.securityfocus.com/bid/48966/info Gilnet News is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

eGov Content Manager Cross Site Scripting Vulrnability

HSC eGov Content Manager Cross Site Scripting Vulrnability The eGov Manager was designed to simplify the efforts of government staffers who are responsible for posting public documents, news updates, events, managing staff directories and online services. This issue is due to a failure in the...

SunShop Shopping Cart 4.0 - &#039;index.php?l&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/23856/info TurnkeyWebTools SunShop Shopping Cart is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to steal cookie-based authentication...