MidiCart ASP - Item_Show.asp?ID2006quant SQL Injection

MidiCart ASP - ItemShow.asp?ID2006quant SQL Injection source: https://www.securityfocus.com/bid/21273/info MidiCart ASP is prone to an SQL injection vulnerability because it fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacke...

MidiCart ASP - 'Item_Show.asp?ID2006quant' SQL Injection

source: https://www.securityfocus.com/bid/21273/info MidiCart ASP is prone to an SQL injection vulnerability because it fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the application, access or modify data...

Fixit iDms Pro Image Gallery - 'filelist.asp' Multiple SQL Injections

source: https://www.securityfocus.com/bid/21282/info Fixit iDMS Pro is prone to multiple input-validation vulnerabilities, including SQL-injection issues and an HTML-injection issue, because the application fails to properly sanitize user-supplied input. Successful exploits of these vulnerabiliti...

CreaDirectory 1.2 - search.asp?category SQL Injection

CreaDirectory 1.2 - search.asp?category SQL Injection source: https://www.securityfocus.com/bid/21230/info Creascripts creadirectory is prone to multiple input-validation vulnerabilities, inculding SQL-injection issues and a cross-site scripting issue, because the application fails to sufficientl...

JiRos Link Manager 1.0 - openlink.asp?LinkID SQL Injection

JiRos Link Manager 1.0 - openlink.asp?LinkID SQL Injection source: https://www.securityfocus.com/bid/21226/info JiRos Links Manager is prone to multiple input-validation vulnerabilities, including SQL- and HTML-injection issues, because it fails to sufficiently sanitize user-supplied data...

Grandora Rialto 1.6 - 'searchkey.asp' Multiple SQL Injections

source: https://www.securityfocus.com/bid/21191/info Grandora Rialto is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting this issue could allow an attacker to steal...

Enthrallweb eClassifieds - 'dirSub.asp?sid' SQL Injection

source: https://www.securityfocus.com/bid/21192/info eClassifieds is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access ...

vSpin Classified System 2004 - search.asp?minprice Cross-Site Scripting

vSpin Classified System 2004 - search.asp?minprice Cross-Site Scripting source: https://www.securityfocus.com/bid/21190/info vSpin Classified System is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because the application fails to...

Enthrallweb eClassifieds - 'ad.asp' Multiple SQL Injections

source: https://www.securityfocus.com/bid/21192/info eClassifieds is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access ...

Active News Manager - 'catID' SQL Injection

source: https://www.securityfocus.com/bid/21167/info Active News Manger is prone to multiple input-validation vulnerabilities, including SQL-injection issues and a cross-site scripting issue, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an...

Link CMS - 'navigacija.php?IDMeniGlavni' SQL Injection

source: https://www.securityfocus.com/bid/21464/info Link CMS is prone to multiple input-validation vulnerabilities, including SQL-injection issues and a cross-site scripting issue, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to...

Texas Rankem - tournament_id SQL Injection

Texas Rankem - tournamentid SQL Injection source: https://www.securityfocus.com/bid/21168/info ClickTech Texas Rank'em is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow...

BestWebApp Dating Site Login Component - Multiple Field SQL Injections

BestWebApp Dating Site Login Component - Multiple Field SQL Injections source: https://www.securityfocus.com/bid/21158/info BestWebApp Dating Site is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently...

ASPIntranet 2.1 - Multiple SQL Injections

ASPIntranet 2.1 - Multiple SQL Injections source: https://www.securityfocus.com/bid/21105/info ASPIntranet is prone to multiple SQL-injection vulnerabilities because the application fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could...

SitesOutlet eCommerce Kit - Multiple SQL Injections

source: https://www.securityfocus.com/bid/21056/info SitesOutlet Ecommerce Kit is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the...

Evolve Merchant - viewcart.asp SQL Injection

Evolve Merchant - viewcart.asp SQL Injection source: https://www.securityfocus.com/bid/21070/info Evolve Merchant is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an...

MGinternet Property Site Manager - 'detail.asp?p' SQL Injection

source: https://www.securityfocus.com/bid/21073/info MGinternet Property Site Manager is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An attacker could exploit these issu...

Car Site Manager - csmasplistings.asp Multiple Cross-Site Scripting Vulnerabilities

Car Site Manager - csmasplistings.asp Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/21066/info Car Site Manager is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data...

MGinternet Property Site Manager - 'admin_login.asp' Multiple SQL Injections

source: https://www.securityfocus.com/bid/21073/info MGinternet Property Site Manager is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An attacker could exploit these issu...

Pilot Cart 7.2 - 'Pilot.asp' SQL Injection

source: https://www.securityfocus.com/bid/21065/info Pilot Cart is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the application, access or...