718 matches found
Magic List Pro - view_archive.cfm?ListID SQL Injection
Magic List Pro - viewarchive.cfm?ListID SQL Injection source: https://www.securityfocus.com/bid/15774/info CFMagic Products are prone to multiple input validation vulnerabilities. These are due to a lack of proper sanitization of user-supplied input. These vulnerabilities allow an attacker to...
Magic Forum Personal - 'view_thread.cfm' Multiple SQL Injections
source: https://www.securityfocus.com/bid/15774/info CFMagic Products are prone to multiple input validation vulnerabilities. These are due to a lack of proper sanitization of user-supplied input. These vulnerabilities allow an attacker to inject malicious SQL code into database queries, and...
Web4Future eCommerce Enterprise Edition 2.1 - viewbrands.php?bid SQL Injection
Web4Future eCommerce Enterprise Edition 2.1 - viewbrands.php?bid SQL Injection source: https://www.securityfocus.com/bid/15707/info eCommerce Enterprise Edition is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to...
Web4Future eCommerce Enterprise Edition 2.1 - index.php Multiple SQL Injections
Web4Future eCommerce Enterprise Edition 2.1 - index.php Multiple SQL Injections source: https://www.securityfocus.com/bid/15707/info eCommerce Enterprise Edition is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to...
Web4Future eCommerce Enterprise Edition 2.1 - view.php Multiple SQL Injections
Web4Future eCommerce Enterprise Edition 2.1 - view.php Multiple SQL Injections source: https://www.securityfocus.com/bid/15707/info eCommerce Enterprise Edition is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to...
Web4Future eCommerce Enterprise Edition 2.1 - 'viewbrands.php?bid' SQL Injection
source: https://www.securityfocus.com/bid/15707/info eCommerce Enterprise Edition is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks. eCommer...
Web4Future eCommerce Enterprise Edition 2.1 - 'index.php' Multiple SQL Injections
source: https://www.securityfocus.com/bid/15707/info eCommerce Enterprise Edition is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks. eCommer...
Web4Future eCommerce Enterprise Edition 2.1 - 'view.php' Multiple SQL Injections
source: https://www.securityfocus.com/bid/15707/info eCommerce Enterprise Edition is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks. eCommer...
Relative Real Estate Systems 1.2 - SQL Injection
source: https://www.securityfocus.com/bid/15714/info Relative Real Estate Systems is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'index.php' script before using it in an SQL query. This vulnerability...
WebCalendar 1.0.1 - Multiple SQL Injections
WebCalendar 1.0.1 - Multiple SQL Injections source: https://www.securityfocus.com/bid/15662/info WebCalendar is prone to multiple SQL injection vulnerabilities. This vulnerability could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic o...
WebCalendar 1.0.1 - Multiple SQL Injections
source: https://www.securityfocus.com/bid/15662/info WebCalendar is prone to multiple SQL injection vulnerabilities. This vulnerability could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks. Successful exploitation cou...
PDJK-support Suite 1.1 - Multiple SQL Injections
source: https://www.securityfocus.com/bid/15598/info PDJK-support Suite is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks. Successful...
AFFCommerce Shopping Cart 1.1.4 - subcategory.php?cl SQL Injection
AFFCommerce Shopping Cart 1.1.4 - subcategory.php?cl SQL Injection source: https://www.securityfocus.com/bid/15545/info AFFCommerce Shopping Cart is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to database queries,...
AFFCommerce Shopping Cart 1.1.4 - ItemInfo.php?item_id SQL Injection
AFFCommerce Shopping Cart 1.1.4 - ItemInfo.php?itemid SQL Injection source: https://www.securityfocus.com/bid/15545/info AFFCommerce Shopping Cart is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to database queries,...
AFFCommerce Shopping Cart 1.1.4 - 'ItemInfo.php?item_id' SQL Injection
source: https://www.securityfocus.com/bid/15545/info AFFCommerce Shopping Cart is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks. AFFCommerc...
AFFCommerce Shopping Cart 1.1.4 - 'ItemReview.php?item_id' SQL Injection
source: https://www.securityfocus.com/bid/15545/info AFFCommerce Shopping Cart is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks. AFFCommerc...
AFFCommerce Shopping Cart 1.1.4 - 'subcategory.php?cl' SQL Injection
source: https://www.securityfocus.com/bid/15545/info AFFCommerce Shopping Cart is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks. AFFCommerc...
FreeForum 1.0/1.1 - Multiple SQL Injections
source: https://www.securityfocus.com/bid/15559/info freeForum is prone to multiple SQL injection vulnerabilities. These vulnerabilities could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or other attacks. Successful exploitation...
Exponent CMS < 0.96.4 Multiple Remote Vulnerabilities (XSS, SQLi, Code Exe, Disc)
The remote host is running Exponent CMS, an open source content management system written in PHP. The version of Exponent CMS installed on the remote host fails to sanitize input to the 'id' parameter of the resource module before using it in database queries. An unauthenticated attacker can...
phpWebThings Multiple Scripts SQL Injection
The remote host is running the phpWebThings application framework. The version of phpWebThings installed on the remote host does not properly sanitize user input in the 'forum' and 'msg' parameters of 'forum.php' script before using it in database queries. An attacker can exploit this vulnerabili...