Seditio CMS 165 - 'plug.php' SQL Injection

source: https://www.securityfocus.com/bid/53036/info Seditio CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

Matterdaddy Market 1.1 - 'cat_name' Multiple SQL Injections

source: https://www.securityfocus.com/bid/52970/info Matterdaddy Market is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit may allow an attacker to compromise the application, access...

Sourcefabric Newscoop <= 3.5.4 Multiple Vulnerabilities - Active Check

Sourcefabric Newscoop is prone to multiple cross-site scripting XSS and SQL injection SQLi vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpte...

CitrusDB 2.4.1 - Local File Inclusion / SQL Injection

source: https://www.securityfocus.com/bid/52946/info CitrusDB is prone to a local file-include vulnerability and an SQL-injection vulnerability. An attacker can exploit these issues to compromise the application, access or modify data, exploit latent vulnerabilities in the underlying database, an...

osCMax 2.5 - adminnew_attributes_include.php Multiple Cross-Site Scripting Vulnerabilities

osCMax 2.5 - adminnewattributesinclude.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/52886/info osCMax is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize...

osCMax 2.5 - adminstats_monthly_sales.php?status Cross-Site Scripting

osCMax 2.5 - adminstatsmonthlysales.php?status Cross-Site Scripting source: https://www.securityfocus.com/bid/52886/info osCMax is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input...

vBulletin 4.1.10 - announcementid SQL Injection

vBulletin 4.1.10 - announcementid SQL Injection source: https://www.securityfocus.com/bid/52897/info VBulletin is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit may allow an attacker to...

osCMax 2.5 - admininformation_manager.php?information_id Cross-Site Scripting

osCMax 2.5 - admininformationmanager.php?informationid Cross-Site Scripting source: https://www.securityfocus.com/bid/52886/info osCMax is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied inpu...

osCMax 2.5 - adminstats_products_purchased.php Multiple Cross-Site Scripting Vulnerabilities

osCMax 2.5 - adminstatsproductspurchased.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/52886/info osCMax is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize...

osCMax 2.5 - &#039;/admin/geo_zones.php?zID&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/52886/info osCMax is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to steal...

osCMax 2.5 - &#039;/admin/htaccess.php&#039; Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/52886/info osCMax is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to steal...

NextBBS 0.6 - index.php?do Cross-Site Scripting

NextBBS 0.6 - index.php?do Cross-Site Scripting source: https://www.securityfocus.com/bid/52728/info NextBBS is prone to multiple SQL-injection vulnerabilities, a cross-site scripting vulnerability, and an authentication-bypass vulnerability. Exploiting these vulnerabilities could allow an attack...

F5 FirePass 7.0 - SQL Injection

F5 FirePass 7.0 - SQL Injection source: https://www.securityfocus.com/bid/52653/info FirePass is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit may allow an attacker to compromise the...

Omnistar Live - Cross-Site Scripting SQL Injection

Omnistar Live - Cross-Site Scripting SQL Injection source: https://www.securityfocus.com/bid/52438/info Omnistar Live is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could all...

Omnistar Live - Cross-Site Scripting / SQL Injection

source: https://www.securityfocus.com/bid/52438/info Omnistar Live is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based authentication...

Wikidforum 2.10 - Search Field Cross-Site Scripting

source: https://www.securityfocus.com/bid/52425/info Wikidforum is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to steal...

Joomla! Component Machine - Multiple SQL Injections

Joomla! Component Machine - Multiple SQL Injections source: https://www.securityfocus.com/bid/52095/info The Machine component for Joomla! is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting...

TestLink - Multiple SQL Injections

TestLink - Multiple SQL Injections source: https://www.securityfocus.com/bid/52086/info TestLink is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker ...

Joomla! Component Machine - Multiple SQL Injections

source: https://www.securityfocus.com/bid/52095/info The Machine component for Joomla! is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the...

Zoho ManageEngine Applications Manager Multiple XSS and SQL Injection Vulnerabilities

This host is running Zoho ManageEngine Applications Manager and is prone to multiple cross site scripting and SQL injection vulnerabilities. OpenVAS Vulnerability Test $Id: gbmanageengineapplicationsmanagermultxssnsqlinjvuln.nasl 5912 2017-04-10 09:01:51Z teissa $ Zoho ManageEngine Applications...