Dokeos <= 1.8.4 main/inc/lib/events.lib.inc.php Referer HTTP Header SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one arbitrary-file-upload issue. Attackers can...

CartWIZ 1.10 ProductDetails.ASP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13332/info CartWIZ is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input prior to utilizing the data in an SQL query. Successful exploitatio...

Bitweaver 1.x fisheye/list_galleries.php sort_mode Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/20996/info Bitweaver is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal...

Efestech E-Kontor - 'id' Parameter SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/28412/info Efestech E-Kontor is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

Joomla! and Mambo 'com_is' 1.0.1 Component Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/30063/info The 'comis' component for Joomla! and Mambo is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issu...

okul siteleri 'com_mezun' Component SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27755/info 'okul siteleri' is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromi...

Scott Manktelow Design Stride 1.0 Merchant Shop.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26046/info Scott Manktelow Design Stride 1.0 Merchant is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could...

Messageriescripthp 2.0 lire-avis.php aa Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21513/info Messageriescripthp is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these...

Messageriescripthp 2.0 existepseudo.php pseudo Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/21513/info Messageriescripthp is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these...

Messageriescripthp 2.0 existeemail.php email Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/21513/info Messageriescripthp is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these...

Messageriescripthp 2.0 Contact/contact.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/21513/info Messageriescripthp is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these...

CubeCart 3.0.x /admin/nav.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/20215/info CubeCart is prone to multiple input-validation vulnerabilities, including information-disclosure, cross-site scripting, and SQL-injection issues, because the application fails to properly sanitize user-supplied...

Joomla! and Mambo com_profile Component - 'oid' Parameter SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27851/info The Joomla! and Mambo 'comprofile' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could...

OpenBiblio 0.x theme_del_confirm.php name Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/27053/info OpenBiblio is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. The issues include SQL-injection, cross-site scripting, HTML-injection, and local...

SoftBiz Web Hosting Directory Script 1.1 browsecats.php cid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15561/info Softbiz Web Host Directory Script is prone to multiple SQL injection vulnerabilities. These issues occur because the application fails to properly sanitize user-supplied input before using it in an SQL query...

Liberum Help Desk 0.97.3 - Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/13841/info Liberum Help Desk is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful...

AnnonceScriptHP 2.0 voirannonce.php no Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21514/info AnnonceScriptHP is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these...

Eggblog 2.0 topic.php message Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/16305/info Eggblog is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities cou...

Bandersnatch 0.4 - Multiple Input Validation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/25094/info Bandersnatch is prone to multiple input-validation vulnerabilities because the application fails to sanitize user-supplied input. These issues include multiple SQL-injections vulnerabilities and an HTML-injecti...

Amoot Web Directory Password Field SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/34016/info Amoot Web Directory is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...