3 matches found
Multiple SQL Injection Vulnerabilities in TheHostingTool
TheHostingTool is a set of open source free PHP-based hosting applications. TheHostingTool suffers from multiple SQL injection vulnerabilities. An attacker could exploit the vulnerabilities to crisis the application, access or modify data, or exploit potential security holes underlying the databa...
Nuked-klaN 1.x - 'index.php' SQL Injection
source: https://www.securityfocus.com/bid/17233/info Nuked-Klan is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the...
IlohaMail Unspecified Database Password Disclosure Weakness
The target is running at least one instance of IlohaMail version 0.6 or earlier. Such versions suffer from a potential password disclosure problem when databasae information is not saved in the session table. Nessus has determined the vulnerability exists on the target simply by looking at the...