PHP JackKnife 2.21 - (PHPJK) UserAreaAuthenticate.php?sUName Cross-Site Scripting

PHP JackKnife 2.21 - PHPJK UserAreaAuthenticate.php?sUName Cross-Site Scripting source: https://www.securityfocus.com/bid/24253/info PHP JackKnife is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues. Exploiting these issues could allow an...

PHP JackKnife 2.21 - '/(PHPJK) UserArea/Authenticate.php?sUName' Cross-Site Scripting

source: https://www.securityfocus.com/bid/24253/info PHP JackKnife is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the...

Use download the vulnerability database to initiate network attacks-vulnerability warning-the black bar safety net

As scripting vulnerability the number one killer-and database download vulnerabilities, now has been more and more people to the art. In this information technology update Fast of the era, the vulnerability produced after the attendant is to respond to the tricks, such as change the database...

SunShop Shopping Cart 4.0 - index.php Multiple SQL Injections

SunShop Shopping Cart 4.0 - index.php Multiple SQL Injections source: https://www.securityfocus.com/bid/23856/info TurnkeyWebTools SunShop Shopping Cart is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may...

SunShop Shopping Cart 4.0 - index.php?l Cross-Site Scripting

SunShop Shopping Cart 4.0 - index.php?l Cross-Site Scripting source: https://www.securityfocus.com/bid/23856/info TurnkeyWebTools SunShop Shopping Cart is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may...

WF-Quote 1.0 Xoops Module - index.php SQL Injection

WF-Quote 1.0 Xoops Module - index.php SQL Injection source: https://www.securityfocus.com/bid/23845/info The WF-Quote module for the Xoops CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this...

Gazi Download Portal - 'Down_Indir.asp' SQL Injection

source: https://www.securityfocus.com/bid/23714/info Gazi Download Portal is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or...

Phorum 5.1.20 - includecontrolcenterusers.php Multiple Method Privilege Escalations

Phorum 5.1.20 - includecontrolcenterusers.php Multiple Method Privilege Escalations source: https://www.securityfocus.com/bid/23616/info Phorum is prone to multiple input-validation vulnerabilities, including an unauthorized-access issue, privilege-escalation issue, multiple SQL-injection issues,...

Phorum 5.1.20 - admin.php?Groups Module group_id Cross-Site Scripting

Phorum 5.1.20 - admin.php?Groups Module groupid Cross-Site Scripting source: https://www.securityfocus.com/bid/23616/info Phorum is prone to multiple input-validation vulnerabilities, including an unauthorized-access issue, privilege-escalation issue, multiple SQL-injection issues, and cross-site...

NuclearBB Alpha 1 - Multiple SQL Injections

source: https://www.securityfocus.com/bid/23555/info NuclearBB is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access or...

PHP-Nuke 8.0.3.3b - SQL Injection Protection Bypass / Multiple SQL Injections

source: https://www.securityfocus.com/bid/23528/info PHP-Nuke is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the application, acce...

UBBCentral UBB.Threads 6.1.1 - UBBThreads.php SQL Injection

UBBCentral UBB.Threads 6.1.1 - UBBThreads.php SQL Injection source: https://www.securityfocus.com/bid/23369/info UBB.threads is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow a...

Gazi Okul Sitesi 2007 - 'Fotokategori.asp' SQL Injection

source: https://www.securityfocus.com/bid/23316/info Gazi Okul Sitesi is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or...

PHP-Fusion 6.1.5 Mod Calendar_Panel - 'Show_Event.php' SQL Injection

source: https://www.securityfocus.com/bid/23225/info PHP-Fusion is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

W-Agora 4.2.1 - search.php?search_user Cross-Site Scripting

W-Agora 4.2.1 - search.php?searchuser Cross-Site Scripting source: https://www.securityfocus.com/bid/23057/info w-Agora is prone to multiple input-validation vulnerabilities, including possible SQL-injection issues and multiple cross-site scripting issues, because it fails to sufficiently sanitiz...

PHPX 3.5.153.5.16 - print.php SQL Injection

PHPX 3.5.153.5.16 - print.php SQL Injection source: https://www.securityfocus.com/bid/23033/info PHPX is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based...

Audins Audiens 3.3 - setup.php?PATH_INFO Cross-Site Scripting

Audins Audiens 3.3 - setup.php?PATHINFO Cross-Site Scripting Audins Audiens is prone to multiple input-validation vulnerabilities, including SQL-injection issues and a cross-site scripting issue, because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues...

Audins Audiens 3.3 - 'setup.php?PATH_INFO' Cross-Site Scripting

Audins Audiens is prone to multiple input-validation vulnerabilities, including SQL-injection issues and a cross-site scripting issue, because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based authentication...

Audins Audiens 3.3 - 'unistall.php' Authentication Bypass

Audins Audiens is prone to multiple input-validation vulnerabilities, including SQL-injection issues and a cross-site scripting issue, because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based authentication...

ibProArcade 2.5.9+ - 'Arcade.php' SQL Injection

source: https://www.securityfocus.com/bid/22575/info ibProArcade is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the application, access or...