The Rat CMS - viewarticle2.php?id SQL Injection

The Rat CMS - viewarticle2.php?id SQL Injection source: https://www.securityfocus.com/bid/29959/info The Rat CMS is prone to multiple input-validation vulnerabilities, including SQL-injection issues and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data...

Joomla! Component EXP Shop 1.0 - SQL Injection

source: https://www.securityfocus.com/bid/29869/info The EXP Shop component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

Noticia Portal - detalle_noticia.php SQL Injection

Noticia Portal - detallenoticia.php SQL Injection source: https://www.securityfocus.com/bid/29655/info Noticia Portal is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...

Noticia Portal - 'detalle_noticia.php' SQL Injection

source: https://www.securityfocus.com/bid/29655/info Noticia Portal is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modif...

PHP Address Book 3.1.5 - Multiple SQL Injections Cross-Site Scripting Vulnerabilities

PHP Address Book 3.1.5 - Multiple SQL Injections Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/29560/info PHP Address Book is prone to multiple cross-site scripting and SQL-injection vulnerabilities because the application fails to sufficiently sanitize...

Te Ecard - id Multiple SQL Injections

Te Ecard - id Multiple SQL Injections source: https://www.securityfocus.com/bid/29478/info Te Ecard is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input before using it in an SQL query. Exploiting these issues could allow an attacker to...

i-pos StoreFront 1.3 - 'index.asp' SQL Injection

source: https://www.securityfocus.com/bid/29471/info i-pos Storefront is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or...

Joomla! / Mambo Component Joo!BB 0.5.9 - 'forum' SQL Injection

source: https://www.securityfocus.com/bid/29475/info The Joo!BB component for Joomla! and Mambo is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

Proje ASP Portal 2.0 - 'id' Multiple SQL Injections

source: https://www.securityfocus.com/bid/29427/info Proje ASP Portal is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application,...

ClassSystem 2.0/2.3 - 'MessageReply.php?teacher_id' SQL Injection

source: https://www.securityfocus.com/bid/29372/info ClassSystem is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. These issues include multiple SQL-injection vulnerabilities and an arbitrary-file-upload vulnerability. Exploiting...

ClassSystem 2.02.3 - MessageReply.php?teacher_id SQL Injection

ClassSystem 2.02.3 - MessageReply.php?teacherid SQL Injection source: https://www.securityfocus.com/bid/29372/info ClassSystem is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. These issues include multiple SQL-injection...

ClassSystem 2.02.3 - classApplyDB.php Unrestricted Arbitrary File Upload Arbitrary Code Execution

ClassSystem 2.02.3 - classApplyDB.php Unrestricted Arbitrary File Upload Arbitrary Code Execution source: https://www.securityfocus.com/bid/29372/info ClassSystem is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. These issues inclu...

Campus Bulletin Board 3.4 - post3book.asp?review Cross-Site Scripting

Campus Bulletin Board 3.4 - post3book.asp?review Cross-Site Scripting source: https://www.securityfocus.com/bid/29375/info Campus Bulletin Board is prone to multiple input-validation vulnerabilities, including multiple SQL-injection issues and a cross-site scripting issue, because it fails to...

Campus Bulletin Board 3.4 - '/post3/book.asp?review' Cross-Site Scripting

source: https://www.securityfocus.com/bid/29375/info Campus Bulletin Board is prone to multiple input-validation vulnerabilities, including multiple SQL-injection issues and a cross-site scripting issue, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could...

Campus Bulletin Board 3.4 - '/post3/view.asp?id' SQL Injection

source: https://www.securityfocus.com/bid/29375/info Campus Bulletin Board is prone to multiple input-validation vulnerabilities, including multiple SQL-injection issues and a cross-site scripting issue, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could...

AbleSpace 1.0 - 'adv_cat.php' SQL Injection

source: https://www.securityfocus.com/bid/29369/info AbleSpace is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify dat...

ClassSystem 2.0/2.3 - 'HomepageTop.php?teacher_id' SQL Injection

source: https://www.securityfocus.com/bid/29372/info ClassSystem is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. These issues include multiple SQL-injection vulnerabilities and an arbitrary-file-upload vulnerability. Exploiting...

AbleDating 2.4 - search_results.php?keyword SQL Injection

AbleDating 2.4 - searchresults.php?keyword SQL Injection source: https://www.securityfocus.com/bid/29342/info AbleDating is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. The issues include an SQL-injection vulnerability and a...

ACGV News 0.9.1 - 'glossaire.php?id' SQL Injection

source: https://www.securityfocus.com/bid/29253/info ACGV News is prone to multiple input-validation vulnerabilities, including an SQL-injection issue and a cross-site scripting issue, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to...

ACGV News 0.9.1 - glossaire.php?id Cross-Site Scripting

ACGV News 0.9.1 - glossaire.php?id Cross-Site Scripting source: https://www.securityfocus.com/bid/29253/info ACGV News is prone to multiple input-validation vulnerabilities, including an SQL-injection issue and a cross-site scripting issue, because it fails to sufficiently sanitize user-supplied...