Next Gen Portfolio Manager - default.asp Multiple SQL Injections

Next Gen Portfolio Manager - default.asp Multiple SQL Injections source: https://www.securityfocus.com/bid/25195/info Next Gen Portfolio Manager is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query...

Lanius CMS 1.2.14 EZSHOPINGCART Module - 'cid' SQL Injection

source: https://www.securityfocus.com/bid/25193/info LANAI CMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access or...

phpsysinfo-xss.txt

HSC PHPSysInfo Index.php Cross Site Scripting PhpSysInfo is a PHP script that displays information about the host being accessed. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in the context of the affected site. This may help the...

Bandersnatch 0.4 - Multiple Input Validation Vulnerabilities

Bandersnatch 0.4 - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/25094/info Bandersnatch is prone to multiple input-validation vulnerabilities because the application fails to sanitize user-supplied input. These issues include multiple SQL-injections...

BSM Store Dependent Forums 1.02 - Username SQL Injection

BSM Store Dependent Forums 1.02 - Username SQL Injection source: https://www.securityfocus.com/bid/25072/info BSM Store Dependent Forums is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue...

Alisveris Sitesi Scripti - index.asp SQL Injection

Alisveris Sitesi Scripti - index.asp SQL Injection source: https://www.securityfocus.com/bid/25005/info Alisveris Sitesi Scripti is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues...

Alstrasoft Affiliate Network Pro 8.0 - temp.php Cross-Site Scripting

Alstrasoft Affiliate Network Pro 8.0 - temp.php Cross-Site Scripting source: https://www.securityfocus.com/bid/25026/info AlstraSoft Affiliate Network Pro is affected by multiple input-validation vulnerabilities. These issues include multiple cross-site scripting isues and SQL-injection issues. A...

Dora Emlak 1.0 Script - Multiple Input Validation Vulnerabilities

Dora Emlak 1.0 Script - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/25004/info Dora Emlak Script is prone to multiple input-validation vulnerabilities, including HTML-injection and SQL-injection issues, because the application fails to properly sanitize...

Alstrasoft Video Share Enterprise 4.x - Multiple Input Validation Vulnerabilities

Alstrasoft Video Share Enterprise 4.x - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/25019/info AlstraSoft Video Share Enterprise is affected by multiple input-validation vulnerabilities. These issues include multiple cross-site scripting vulnerabilities and...

Alstrasoft Video Share Enterprise 4.x - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/25019/info AlstraSoft Video Share Enterprise is affected by multiple input-validation vulnerabilities. These issues include multiple cross-site scripting vulnerabilities and multiple SQL-injection vulnerabilities. Exploiting these issues could allow an...

Alisveris Sitesi Scripti - 'index.asp' SQL Injection

source: https://www.securityfocus.com/bid/25005/info Alisveris Sitesi Scripti is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the...

Dora Emlak 1.0 Script - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/25004/info Dora Emlak Script is prone to multiple input-validation vulnerabilities, including HTML-injection and SQL-injection issues, because the application fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker ...

Calendarix 0.7.20070307 - Multiple SQL Injections

source: https://www.securityfocus.com/bid/24633/info Calendarix is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access or...

Comersus Cart 7.0.7 - comersus_customerAuthenticateForm.asp redirectUrl Cross-Site Scripting

Comersus Cart 7.0.7 - comersuscustomerAuthenticateForm.asp redirectUrl Cross-Site Scripting source: https://www.securityfocus.com/bid/24562/info Comersus Cart is affected by multiple input validation vulnerabilities. A successful exploit could allow an attacker to compromise the application, acce...

Comersus Cart 7.0.7 - comersus_optReviewReadExec.asp?id SQL Injection

Comersus Cart 7.0.7 - comersusoptReviewReadExec.asp?id SQL Injection source: https://www.securityfocus.com/bid/24562/info Comersus Cart is affected by multiple input validation vulnerabilities. A successful exploit could allow an attacker to compromise the application, access or modify data, or...

Comersus Cart 7.0.7 - 'comersus_message.asp' redirectUrl Cross-Site Scripting

source: https://www.securityfocus.com/bid/24562/info Comersus Cart is affected by multiple input validation vulnerabilities. A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database. The attacker may...

Comersus Cart 7.0.7 - 'comersus_optReviewReadExec.asp?id' SQL Injection

source: https://www.securityfocus.com/bid/24562/info Comersus Cart is affected by multiple input validation vulnerabilities. A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database. The attacker may...

Comersus Cart 7.0.7 - 'comersus_customerAuthenticateForm.asp' redirectUrl Cross-Site Scripting

source: https://www.securityfocus.com/bid/24562/info Comersus Cart is affected by multiple input validation vulnerabilities. A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database. The attacker may...

My Databook - diary.php?year Cross-Site Scripting

My Databook - diary.php?year Cross-Site Scripting source: https://www.securityfocus.com/bid/24311/info My DataBook is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues. Exploiting these issues could allow an attacker to steal cookie-based...

PHP JackKnife 2.21 - (PHPJK) UserAreaNewAccountsindex.php?sAccountUnq Cross-Site Scripting

PHP JackKnife 2.21 - PHPJK UserAreaNewAccountsindex.php?sAccountUnq Cross-Site Scripting source: https://www.securityfocus.com/bid/24253/info PHP JackKnife is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues. Exploiting these issues could...