NolaPro Enterprise 4.0.5538 Cross Site Scripting and SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/39875/info NolaPro Enterprise is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials,...

Snipe Gallery 3.1.4 search.php keyword Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/15844/info Snipe Gallery is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabiliti...

Alumni 1.0.8/1.0.9 - info.php id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/29019/info Project Alumni is prone to a cross-site scripting vulnerability and an SQL-injection vulnerability because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues could allow...

Insanely Simple Blog 0.4/0.5 Blog Anonymous Blog Entry XSS

No description provided by source. source: http://www.securityfocus.com/bid/24934/info Insanely Simple Blog is prone to multiple input-validation vulnerabilities, including cross-site scripting, HTML-injection, and SQL-injection issues, because the application fails to properly sanitize...

The Rat CMS viewarticle.php id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/29959/info The Rat CMS is prone to multiple input-validation vulnerabilities, including SQL-injection issues and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these...

NooToplist 1.0 Index.PHP Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/14873/info NooToplist is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation could result in a compromise...

n8cms 1.1/1.2 index.php Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/16858/info The 'n8cms' script is prone to multiple input-validation vulnerabilities. These issues are due to the application's failure to properly sanitize user-supplied input. Successful exploitation could allow an...

Zen Time Tracking 2.2 Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/38153/info Zen Time Tracking is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker...

newsPHP 2006 PRO index.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/18726/info NewsPHP 2006 PRO is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properl...

FipsCMS 2.1 'forum/neu.asp' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/30712/info fipsCMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

McGallery 1.0/1.1/2.2 index.php language Parameter Traversal Local File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/15845/info mcGallery PRO is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabiliti...

Iatek Knowledge Base 'content_by_cat.asp' - SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/28376/info Iatek Knowledge Base is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

Tandis CMS 2.5 'index.php' Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/31930/info Tandis CMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input before using it in an SQL query. Exploiting these issues could allow an attacker to...

Dokeos <= 1.8.4 main/calendar/myagenda.php courseCode Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one arbitrary-file-upload issue. Attackers can...

PromoProducts 'view_product.php' Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/30725/info PromoProducts is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...

CubeCart 3.0.4/4.3.6 'productId' Parameter SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/37065/info CubeCart is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

Mall23 AddItem.ASP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14898/info Mall23 is prone to an SQL injection vulnerability. This is due to a lack of proper sanitization of user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise of th...

8Pixel.net SimpleBlog 2.1 - Multiple Input Validation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/16243/info SimpleBlog is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities...

TLM CMS 1.1 - 'index.php' Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/29049/info TLM CMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...

Elkagroup Image Gallery 1.0 'view.php' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/31966/info Elkagroup is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...