Shop-Script CategoryID SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13633/info Shop-Script is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could...

Grandora Rialto 1.6 searchkey.asp Keyword Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/21191/info Grandora Rialto is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting this issu...

OneOrZero 1.6.3 Helpdesk Index.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17298/info OneOrZero Helpdesk is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit...

NPDS 4.8/5.0 comments.php thold Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/13649/info NPDS is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'thold' parameter. Successful exploitation could result in a...

XMB Forum 1.9.3 Post.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15267/info XMB Nexus Forum is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation...

NPDS 4.8/5.0 pollcomments.php thold Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/13649/info NPDS is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'thold' parameter. Successful exploitation could result in a...

vSpin Classified System 2004 search.asp Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21190/info vSpin Classified System is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because the application fails to sufficiently sanitize user-supplied data...

Blog System 1.2 index.php cat Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15719/info Blog System is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...

JPortal Web Portal 2.2.1/2.3.1 news.php id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15324/info JPortal is prone to multiple SQL injection vulnerabilities. These are due to a lack of proper sanitization of user-supplied input before being used in an SQL query. Successful exploitation could result in a...

JGS-Portal 3.0.1/3.0.2 jgs_portal_sponsor.php id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/13650/info JGS-Portal is prone to multiple cross-site scripting and SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of...

VWar 1.x war.php Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/19327/info Vwar is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues. These issues occur because the application fails to properly sanitize user-supplied input. A...

Edgewall Software Trac 0.7.1/0.8/0.9 Search Module SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15720/info Trac is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could allow a...

A-FAQ 1.0 faqDsp.asp catcode Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15741/info A-FAQ is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...

Cars Portal 1.1 Index.PHP Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/15747/info Cars Portal is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...

Jupiter CMS 1.1.4/1.1.5 modules/blocks.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/20048/info Jupiter CMSA is prone to multiple input-validation vulnerabilities, including cross-site scripting, SQL-injection, and arbitrary file-upload issues, because the application fails to sanitize user-supplied input...

DeskPro 1.1 - Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/8856/info It has been reported that DeskPro is prone to multiple SQL injection vulnerabilities due to insufficient sanitization of user-supplied input. The problem is reported to be present in various parameters such as...

JiRos Link Manager 1.0 viewlinks.asp CategoryID Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21226/info JiRos Links Manager is prone to multiple input-validation vulnerabilities, including SQL- and HTML-injection issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could...

ScozNet ScozBook 1.1 AdminName Variable SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/16115/info ScozNet ScozBook is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation...

CyberBuild 0 login.asp SessionID Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/17829/info CyberBuild is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly...

SoftBiz Image Gallery 0 images.php cid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/17339/info Softbiz Image Gallery is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A...