X-Scripts X-Poll 1.10 - 'top.php' SQL Injection

source: https://www.securityfocus.com/bid/19236/info X-Poll is prone to an SQL-injection vulnerability because it fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the application, access or modify data, or...

LinksCaffe 3.0 - links.php Multiple SQL Injections

LinksCaffe 3.0 - links.php Multiple SQL Injections source: https://www.securityfocus.com/bid/19149/info LinksCaffe is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application...

LinksCaffe 3.0 - counter.php?tablewidth Cross-Site Scripting

LinksCaffe 3.0 - counter.php?tablewidth Cross-Site Scripting source: https://www.securityfocus.com/bid/19149/info LinksCaffe is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the...

PHP Pro Bid 5.2.4 - 'viewfeedback.php' Multiple SQL Injections

source: https://www.securityfocus.com/bid/19158/info PHP Pro Bid is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because the application fails to properly sanitize user-supplied input. A successful exploit of these vulnerabilities...

PHP Pro Bid 5.2.4 - 'auctionsearch.php?advsrc' Cross-Site Scripting

source: https://www.securityfocus.com/bid/19158/info PHP Pro Bid is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because the application fails to properly sanitize user-supplied input. A successful exploit of these vulnerabilities...

LinksCaffe 3.0 - 'links.php?newdays' Cross-Site Scripting

source: https://www.securityfocus.com/bid/19149/info LinksCaffe is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successf...

Dream4 Koobi Pro 5.6 - showtopic SQL Injection

Dream4 Koobi Pro 5.6 - showtopic SQL Injection source: https://www.securityfocus.com/bid/18970/info Koobi Pro prone to a cross-site scripting issue and an SQL-injection issue because the application fails to properly sanitize user-supplied input. A successful exploit of these vulnerabilities coul...

Invision Power Board (IP.Board) 1.x2.x - Multiple SQL Injections

Invision Power Board IP.Board 1.x2.x - Multiple SQL Injections source: https://www.securityfocus.com/bid/18836/info Invision Power Board is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied data before using it...

newsPHP 2006 PRO - index.php Multiple Cross-Site Scripting Vulnerabilities

newsPHP 2006 PRO - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/18726/info NewsPHP 2006 PRO is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due t...

PHPClassifieds.Info - Multiple Input Validation Vulnerabilities

PHPClassifieds.Info - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/18713/info The 'phpclassifieds.info' product is prone to multiple input-validation vulnerabilities. The issues include HTML- and SQL-injection vulnerabilities. These issues are due to a failu...

PHPClassifieds.Info - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/18713/info The 'phpclassifieds.info' product is prone to multiple input-validation vulnerabilities. The issues include HTML- and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input...

Dating Agent 4.7.1 - Multiple Input Validation Vulnerabilities

Dating Agent 4.7.1 - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/18607/info Dating Agent is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in t...

PHP Event Calendar 4.2 - SQL Injection

PHP Event Calendar 4.2 - SQL Injection source: https://www.securityfocus.com/bid/18593/info PHP Event Calendar is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. A successful exploi...

SoftBizScripts Dating Script 1.0 - index.php SQL Injection

SoftBizScripts Dating Script 1.0 - index.php SQL Injection source: https://www.securityfocus.com/bid/18605/info Softbiz Dating Script is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A...

SoftBizScripts Dating Script 1.0 - 'featured_photos.php' SQL Injection

source: https://www.securityfocus.com/bid/18605/info Softbiz Dating Script is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker to compromise the...

V3 Chat Instant Messenger - mycontacts.php membername Arbitrary User Buddy List Manipulation

V3 Chat Instant Messenger - mycontacts.php membername Arbitrary User Buddy List Manipulation source: https://www.securityfocus.com/bid/18543/info V3 Chat Instant Messenger is prone to multiple cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the...

V3 Chat Instant Messenger - search.php Multiple Cross-Site Scripting Vulnerabilities

V3 Chat Instant Messenger - search.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/18543/info V3 Chat Instant Messenger is prone to multiple cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to...

V3 Chat Instant Messenger - profileview.php?membername Cross-Site Scripting

V3 Chat Instant Messenger - profileview.php?membername Cross-Site Scripting source: https://www.securityfocus.com/bid/18543/info V3 Chat Instant Messenger is prone to multiple cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly...

V3 Chat Instant Messenger - mailreply.php?id Cross-Site Scripting

V3 Chat Instant Messenger - mailreply.php?id Cross-Site Scripting source: https://www.securityfocus.com/bid/18543/info V3 Chat Instant Messenger is prone to multiple cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize...

V3 Chat Instant Messenger - profile.php?site_id Cross-Site Scripting

V3 Chat Instant Messenger - profile.php?siteid Cross-Site Scripting source: https://www.securityfocus.com/bid/18543/info V3 Chat Instant Messenger is prone to multiple cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize...