phpDatingClub 'search.php' Cross-Site Scripting and SQL Injection Vulnerabilities

phpDatingClub is prone to a cross-site scripting vulnerability and an SQL-injection vulnerability because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the applicatio...

Tausch Ticket Script 3 - suchauftraege_user.php?userid SQL Injection

Tausch Ticket Script 3 - suchauftraegeuser.php?userid SQL Injection source: https://www.securityfocus.com/bid/43710/info Tausch Ticket Script is prone to multiple SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input. Exploiting these issues could allow an attack...

Joomla! Component Permis 1.0 (com_groups) - id SQL Injection

Joomla! Component Permis 1.0 comgroups - id SQL Injection source: https://www.securityfocus.com/bid/35849/info The Permis 'comgroups' component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query...

Joomla! Component Permis 1.0 (com_groups) - 'id' SQL Injection

source: https://www.securityfocus.com/bid/35849/info The Permis 'comgroups' component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise th...

AlmondSoft Multiple Classifieds Products - 'index.php?replid' SQL Injection

source: https://www.securityfocus.com/bid/35816/info AlmondSoft Almond Classifieds is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal...

eliteCMS multiple Vulnerabilities

eliteCMS is prone to a vulnerability that lets attackers upload and execute arbitrary PHP code. The application is also prone to a cross-site scripting issue and to a SQL Injection Vulnerability. These issues occur because the application fails to sufficiently sanitize user-supplied input...

phpBugTracker 'include.php' SQL Injection Vulnerability

According to its version number, the remote version of phpBugTracker is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modi...

Cacti < 0.8.7b Multiple Input Validation Vulnerabilities

Cacti is prone to multiple unspecified input-validation vulnerabilities. Copyright C 2009 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is fre...

PHP-Nuke 8.0 - maintrackinguserLog.php SQL Injection

PHP-Nuke 8.0 - maintrackinguserLog.php SQL Injection source: https://www.securityfocus.com/bid/35117/info PHP-Nuke is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker...

LxBlog - Multiple Cross-Site Scripting SQL Injections

LxBlog - Multiple Cross-Site Scripting SQL Injections source: https://www.securityfocus.com/bid/35071/info LxBlog is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues coul...

LxBlog - Multiple Cross-Site Scripting / SQL Injections

source: https://www.securityfocus.com/bid/35071/info LxBlog is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based authenticati...

TemaTres Multiple XSS and SQL Injection Vulnerabilities

The host is running TemaTres and is prone to Multiple XSS and SQL Injection Vulnerabilities. OpenVAS Vulnerability Test $Id: gbtematresmultxssnsqlinjvuln.nasl 4892 2016-12-30 15:39:07Z teissa $ TemaTres Multiple XSS and SQL Injection Vulnerabilities Authors: Sharath S Copyright: Copyright c 2009...

Geeklog 1.5.2 - &#039;usersettings.php&#039; SQL Injection

source: https://www.securityfocus.com/bid/34553/info Geeklog is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data,...

Absolute Form Processor XE 1.5 - &#039;login.asp&#039; SQL Injection

source: https://www.securityfocus.com/bid/34463/info Absolute Form Processor XE is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application,...

Xplode 'module_wrapper.asp' SQL Injection and Cross Site Scripting Vulnerabilities

Xplode is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify...

Gravity Board X Multiple SQL Injection Vulnerabilities and Remote Command Execution Vulnerability

Gravity Board X is prone to multiple SQL-injection vulnerabilities and a remote command-execution because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to execute arbitrary code, compromise the application...

Community CMS <= 0.5 Multiple SQLi Vulnerabilities - Active Check

Community CMS is prone to multiple SQL injection SQLi vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in SQL queries. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...

phpMyRealty 1.0.7 - 1.0.9 Multiple SQLi Vulnerabilities - Active Check

phpMyRealty is prone to multiple SQL injection SQLi vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...

phpMyAdmin DB_Create.PHP Multiple Input Validation Vulnerabilities

phpMyAdmin is prone to multiple input-validation vulnerabilities, including a cross-site scripting and a SQL-injection issue. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Pixie CMS SQL Injection and Cross Site Scripting Vulnerabilities

Pixie CMS is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modif...