1163 matches found
LinksPro - OrderDirection SQL Injection
LinksPro - OrderDirection SQL Injection source: https://www.securityfocus.com/bid/33305/info LinksPro is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromis...
Active Bids - 'search' SQL Injection
source: https://www.securityfocus.com/bid/33306/info Active Auction House and Active Auction Pro are prone to SQL-injection and cross-site scripting vulnerabilities because they fail to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based...
SolucionXpressPro - main.php SQL Injection
SolucionXpressPro - main.php SQL Injection source: https://www.securityfocus.com/bid/33111/info SolucionXpressPro is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker ...
DO-CMS 3.0 - p Multiple SQL Injections
DO-CMS 3.0 - p Multiple SQL Injections source: https://www.securityfocus.com/bid/32906/info DO-CMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...
ASP-DEV XM Events Diary - cat SQL Injection
ASP-DEV XM Events Diary - cat SQL Injection source: https://www.securityfocus.com/bid/32809/info ASP-DEV XM Events Diary is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...
Professional Download Assistant 0.1 - SQL Injection
Professional Download Assistant 0.1 - SQL Injection source: https://www.securityfocus.com/bid/32706/info Professional Download Assistant is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue...
RevSense 1.0 - SQL Injection / Cross-Site Scripting
source: https://www.securityfocus.com/bid/32624/info RevSense is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based authentication...
Orkut Clone - profile_social.php?id SQL Injection
Orkut Clone - profilesocial.php?id SQL Injection source: https://www.securityfocus.com/bid/32600/info Orkut Clone is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow a...
Orkut Clone - 'profile_social.php?id' Cross-Site Scripting
source: https://www.securityfocus.com/bid/32600/info Orkut Clone is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based authentication...
ASP Forum Script - default.asp Query String Cross-Site Scripting
ASP Forum Script - default.asp Query String Cross-Site Scripting source: https://www.securityfocus.com/bid/32571/info ASP Forum Script is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data...
PHP JOBWEBSITE PRO - adname SQL Injection
PHP JOBWEBSITE PRO - adname SQL Injection source: https://www.securityfocus.com/bid/32570/info PHP JOBWEBSITE PRO is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues coul...
ASP Forum Script - new_message.asp?forum_id Cross-Site Scripting
ASP Forum Script - newmessage.asp?forumid Cross-Site Scripting source: https://www.securityfocus.com/bid/32571/info ASP Forum Script is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploitin...
ASP Forum Script - messages.asp?message_id SQL Injection
ASP Forum Script - messages.asp?messageid SQL Injection source: https://www.securityfocus.com/bid/32571/info ASP Forum Script is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these...
Pre Classified Listings 1.0 - detailad.asp SQL Injection
Pre Classified Listings 1.0 - detailad.asp SQL Injection source: https://www.securityfocus.com/bid/32566/info Pre Classified Listings is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue coul...
PHP JOBWEBSITE PRO - forgot.php Cross-Site Scripting
PHP JOBWEBSITE PRO - forgot.php Cross-Site Scripting source: https://www.securityfocus.com/bid/32570/info PHP JOBWEBSITE PRO is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these...
ASP Forum Script - 'messages.asp?forum_id' Cross-Site Scripting
source: https://www.securityfocus.com/bid/32571/info ASP Forum Script is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based...
Octeth Oempro 3.5.5 - Multiple SQL Injections
source: https://www.securityfocus.com/bid/32784/info Octeth Oempro is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access...
PHP JOBWEBSITE PRO - 'adname' SQL Injection
source: https://www.securityfocus.com/bid/32570/info PHP JOBWEBSITE PRO is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based...
ASP Forum Script - 'messages.asp?message_id' SQL Injection
source: https://www.securityfocus.com/bid/32571/info ASP Forum Script is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based...
YourFreeWorld Downline Builder Pro - 'tr.php' SQL Injection
source: https://www.securityfocus.com/bid/32047/info Downline Builder Pro is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or...