Fullaspsite ASP Hosting Site - 'listmain.asp?cat' SQL Injection

source: https://www.securityfocus.com/bid/22545/info Fullaspsite Shop is prone to multiple input-validation issues, including multiple cross-site scripting issues and an SQL-injection issue, because the application fails to properly sanitize user-supplied input. A successful exploit of these...

Easebay Resources Login Manager - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/22142/info Easebay Resources Login Manager is prone to multiple input-validation vulnerabilities because the application fails to sufficiently sanitize user-supplied input. The vulnerabilities include an SQL-injection issue and a cross-site scripting issu...

All In One Control Panel 1.3.x - cp_downloads.php?did SQL Injection

All In One Control Panel 1.3.x - cpdownloads.php?did SQL Injection source: https://www.securityfocus.com/bid/22032/info All In One Control Panel is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query...

CreateAuction - Cats.asp SQL Injection

CreateAuction - Cats.asp SQL Injection source: https://www.securityfocus.com/bid/21929/info Createauction is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

Future Internet - index.cfm Multiple SQL Injections

Future Internet - index.cfm Multiple SQL Injections source: https://www.securityfocus.com/bid/21727/info Future Internet is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. A...

Future Internet - index.cfm?categoryId Cross-Site Scripting

Future Internet - index.cfm?categoryId Cross-Site Scripting source: https://www.securityfocus.com/bid/21727/info Future Internet is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied...

Xt-News 0.1 - 'add_comment.php?id_news' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21719/info Xt-News is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An attacker could exploit these issues to steal cookie-based...

AnnonceScriptHP 2.0 - adminadmin_configAide.php?email Cross-Site Scripting

AnnonceScriptHP 2.0 - adminadminconfigAide.php?email Cross-Site Scripting source: https://www.securityfocus.com/bid/21514/info AnnonceScriptHP is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because it fails to sufficiently sanitize...

ProNews 1.5 - adminchange.php Multiple Cross-Site Scripting Vulnerabilities

ProNews 1.5 - adminchange.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/21516/info ProNews is prone to multiple input-validation vulnerabilities, including multiple HTML-injection issues, an SQL-injection issue, and a cross-site scripting issue, becau...

Messageriescripthp 2.0 - '/Contact/contact.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/21513/info Messageriescripthp is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to...

AnnonceScriptHP 2.0 - 'membre.dwt.php?email' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21514/info AnnonceScriptHP is prone to multiple input-validation vulnerabilities, including SQL-injection and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to ste...

DUdownload 1.01.1 - detail.asp Multiple SQL Injections

DUdownload 1.01.1 - detail.asp Multiple SQL Injections source: https://www.securityfocus.com/bid/21405/info Multiple DuWare products are prone to multiple SQL-injection vulnerabilities because they fail to properly sanitize user-supplied input before using it in SQL queries. A successful exploit...

Invision Gallery 2.0.7 - index.php?IMG SQL Injection

Invision Gallery 2.0.7 - index.php?IMG SQL Injection source: https://www.securityfocus.com/bid/21388/info Invision Gallery is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could...

Invision Gallery 2.0.7 - 'index.php?IMG' SQL Injection

source: https://www.securityfocus.com/bid/21388/info Invision Gallery is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the application, acce...

Click Gallery - Multiple Input Validation Vulnerabilities

Click Gallery - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/21311/info Click Gallery is prone to multiple input-validation vulnerabilities, including SQL-injection issues and a cross-site scripting issue, because the application fails to sufficiently saniti...

Click Gallery - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/21311/info Click Gallery is prone to multiple input-validation vulnerabilities, including SQL-injection issues and a cross-site scripting issue, because the application fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow...

SIAP CMS - login.asp SQL Injection

SIAP CMS - login.asp SQL Injection source: https://www.securityfocus.com/bid/21286/info SIAP CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

fipsShop - Multiple SQL Injections

source: https://www.securityfocus.com/bid/21289/info fipsShop is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access or...

ASP ListPics 5.0 - 'Listpics.asp' SQL Injection

source: https://www.securityfocus.com/bid/21279/info ASP ListPics is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

Link Exchange Lite 1.0 - Multiple SQL Injections

Link Exchange Lite 1.0 - Multiple SQL Injections source: https://www.securityfocus.com/bid/21225/info Link Exchange Lite is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could...