NPDS 4.8/5.0 comments.php thold Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/13649/info NPDS is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'thold' parameter. Successful exploitation could result in a...

DUportal Pro 3.4 default.asp Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/13285/info DUportal Pro is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacke...

Creative Software UK Community Portal 1.1 PollResults.php Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/17890/info Creative Community Portal is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. A...

IwebNegar 1.1 Comments.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/19757/info IwebNegar is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...

DropAFew 0.2 editlogcal.php save Action calories Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/23400/info DropAFew is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...

Future Internet index.cfm Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21727/info Future Internet is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An attacker could...

OpenBB 1.0.6 MyHome.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10044/info It has been reported that OpenBB is prone to a vulnerability that may allow malicious users to influence SQL queries of the affected application. This issue is due to a failure of the application to properly...

Helpdesk Issue Manager 0.x issue.php id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15604/info Helpdesk Issue Manager is prone to multiple SQL injection vulnerabilities. Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker ...

FAQ System 1.1 index.php CATEGORY_ID Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15640/info FAQ System is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...

Phorum 5.1.20 admin.php badwords/banlist Module SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/23616/info Phorum is prone to multiple input-validation vulnerabilities, including an unauthorized-access issue, privilege-escalation issue, multiple SQL-injection issues, and cross-site scripting issues, because the...

Car Site Manager csm/asp/detail.asp p Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21066/info Car Site Manager is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to stea...

Gravity Board X 1.1 Login SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14497/info Gravity Board X GBX is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitatio...

TML 0.5 index.php form Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/15876/info TML CMS is prone to multiple input validation vulnerabilities. Successful exploitation of these vulnerabilities could result in a compromise of the application, disclosure or modification of data, the theft of...

Jupiter CMS 1.1.4/1.1.5 modules/blocks.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/20048/info Jupiter CMSA is prone to multiple input-validation vulnerabilities, including cross-site scripting, SQL-injection, and arbitrary file-upload issues, because the application fails to sanitize user-supplied input...

Softbiz Resource Repository Script 0 refer_friend.php sbres_id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15585/info Softbiz Resource Repository Script is prone to SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query...

Blog System 1.2 index.php cat Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15719/info Blog System is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...

20/20 Applications Data Shed 1.0 f-email.asp itemID Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21156/info 20/20 DataShed is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...

AnnonceScriptHP 2.0 email.php id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21514/info AnnonceScriptHP is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these...

vSpin Classified System 2004 search.asp Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21190/info vSpin Classified System is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because the application fails to sufficiently sanitize user-supplied data...

JPortal Web Portal 2.2.1/2.3.1 news.php id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15324/info JPortal is prone to multiple SQL injection vulnerabilities. These are due to a lack of proper sanitization of user-supplied input before being used in an SQL query. Successful exploitation could result in a...