Lessons From the WikiLeaks DDoS Attacks

Denial of Service DoS attacks are a common method used to take down Websites, servers, or even sections of the Internet. These attacks typically come in two forms: Distributed DoS DDos and DoS attacks. DDoS create a flood of traffic to a Website, server, or section of the internet that overwhelms...

MyBB 1.6 - 'private.php?keywords' SQL Injection

source: https://www.securityfocus.com/bid/45565/info MyBB is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access or modif...

Joomla! Component JExtensions Property Finder - sf_id SQL Injection

Joomla! Component JExtensions Property Finder - sfid SQL Injection source: https://www.securityfocus.com/bid/45333/info JExtensions Property Finder is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting...

Joomla! Component Jeformcr - id SQL Injection

Joomla! Component Jeformcr - id SQL Injection source: https://www.securityfocus.com/bid/45329/info Joomla Jeformcr is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker...

PHP State - id SQL Injection

PHP State - id SQL Injection source: https://www.securityfocus.com/bid/45328/info PHP State is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise...

Joomla! Component Jeformcr - 'id' SQL Injection

source: https://www.securityfocus.com/bid/45329/info Joomla Jeformcr is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modi...

Exponent CMS Multiple Input Validation Vulnerabilities

Exponent CMS is prone to multiple input-validation vulnerabilities because it fails to adequately sanitize user-supplied input. These vulnerabilities include local file-include, information-disclosure, arbitrary-file-upload, arbitrary-file-modify, and cross-site-scripting vulnerabilities...

Techno Dreams Articles & Papers Package 2.0 - 'ArticlesTablelist.asp' SQL Injection

source: https://www.securityfocus.com/bid/45201/info Techno Dreams Articles & Papers Package is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

Joomla! Component com_storedirectory - 'id' SQL Injection

source: https://www.securityfocus.com/bid/45094/info Joomla! Store Directory is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access...

Wernhart Guestbook 2001.03.28 - Multiple SQL Injections

Wernhart Guestbook 2001.03.28 - Multiple SQL Injections source: https://www.securityfocus.com/bid/45084/info Wernhart Guestbook is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues...

Raised Eyebrow CMS - 'venue.php' SQL Injection

source: https://www.securityfocus.com/bid/44880/info Raised Eyebrow CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or...

Dolphin <= 7.0.3 Multiple Vulnerabilities

Dolphin is prone to an SQL injection SQLi and an information disclosure vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Joomla! Component Projects &#039;com_projects&#039; - SQL Injection / Local File Inclusion

source: https://www.securityfocus.com/bid/44456/info The 'comprojects' component for Joomla! is prone to an SQL-injection vulnerability and a local file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker can exploit these vulnerabilities to compromise...

PHP MicroCMS Local File Include and SQL Injection Vulnerabilities

PHP MicroCMS is prone to a local file-include vulnerability and multiple SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit the local file-include vulnerability using directory- traversal strings to view and execute arbitrary local fil...

Group-Office 'modules/notes/json.php' SQL Injection Vulnerability

Group-Office is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respectiv...

Irokez CMS 'id' Parameter SQL Injection Vulnerability

Irokez CMS is prone to an SQL injection SQLi vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

ZenPhoto 1.3 - &#039;/zp-core/admin.php&#039; Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/43021/info Zenphoto is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based...

ZenPhoto 1.3 - &#039;/zp-core/full-image.php?a&#039; SQL Injection

source: https://www.securityfocus.com/bid/43021/info Zenphoto is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based...

CMS WebManager-Pro - c.php SQL Injection

CMS WebManager-Pro - c.php SQL Injection source: https://www.securityfocus.com/bid/42951/info CMS WebManager-Pro is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker t...

TBDev 2.0 - Remote File Inclusion SQL Injection

TBDev 2.0 - Remote File Inclusion SQL Injection source: https://www.securityfocus.com/bid/43004/info TBDev is prone to multiple input-validation vulnerabilities, including a remote file-include issue and an SQL-injection issue. A successful exploit may allow an attacker to execute malicious code...