Marwel 2.7 - 'index.php' SQL Injection

source: https://www.securityfocus.com/bid/15959/info Marwel is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise of the...

E-Publish 2.0 - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/15964/info E-Publish is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities could result in a compromise of the...

ContentServ 3.0/3.1/4.0 - 'index.php' SQL Injection

source: https://www.securityfocus.com/bid/15956/info ContentServ is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could allow an attacker to compromise th...

Bitweaver 1.1.1 - 'my.php?sort_mode' Cross-Site Scripting

source: https://www.securityfocus.com/bid/15962/info bitweaver is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities could result in a compromise of the...

Baseline CMS 1.95 - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/15961/info Baseline CMS is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. A successful exploit could allow an attacker to compromise the application, access or modify data, exploi...

Acidcat CMS 2.1.13 - 'ID' SQL Injection

source: https://www.securityfocus.com/bid/15933/info Acidcat CMS is prone to multiple input validation vulnerabilities. These issues are due to a lack of proper sanitization of user-supplied input. Successful exploitation could result in a compromise of the application, disclosure or modification...

Netref 3.0 - index.php SQL Injection

Netref 3.0 - index.php SQL Injection source: https://www.securityfocus.com/bid/15862/info Netref is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...

News Module for Envolution - modules.php Multiple Cross-Site Scripting Vulnerabilities

News Module for Envolution - modules.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/15857/info Envolution is prone to multiple input validation vulnerabilities. Successful exploitation of these vulnerabilities could result in a compromise of the...

phpCOIN 1.2.2 multiple vulnerabilities

PhpCOIN 1.2.2 arbitrary remotelocal inclusion / blind sql injection / path disclosure software: site: http://www.phpcoin.com/ description: "a free software package originally designed for web-hosting resellers to handle clients, orders, invoices, notes and helpdesk, but no longer limited to hosti...

ThWboard.txt

KAPDA New advisory Vendor: http://www.thwboard.de Vulnerable Version: 3 beta 2.8 Bug: HTML Injection , XSS , SQL Injection Exploitation: Remote with browser Description: -------------------- ThWboard is a freely available German PHP-based message board program that uses a MySQL database...

PHP Web Scripts Ad Manager Pro 2.0 - 'Advertiser_statistic.php' SQL Injection

source: https://www.securityfocus.com/bid/15847/info Ad Manager Pro is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise of the...

News Module for Envolution - modules.php Multiple SQL Injections

News Module for Envolution - modules.php Multiple SQL Injections source: https://www.securityfocus.com/bid/15857/info Envolution is prone to multiple input validation vulnerabilities. Successful exploitation of these vulnerabilities could result in a compromise of the application, disclosure or...

PHPWebGallery 1.3.41.5.1 - picture.php SQL Injection

PHPWebGallery 1.3.41.5.1 - picture.php SQL Injection source: https://www.securityfocus.com/bid/15837/info PhpWebGallery is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit...

Plogger Beta 2 - index.php Multiple Cross-Site Scripting Vulnerabilities

Plogger Beta 2 - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/15839/info Plogger is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful...

Plogger Beta 2 - index.php?id SQL Injection

Plogger Beta 2 - index.php?id SQL Injection source: https://www.securityfocus.com/bid/15839/info Plogger is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these...

VCD-db 0.9x Search Module - 'batch' Cross-Site Scripting

source: https://www.securityfocus.com/bid/15840/info VCD-db is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities could result in a compromise of the...

Plogger Beta 2 - 'index.php?id' SQL Injection

source: https://www.securityfocus.com/bid/15839/info Plogger is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities could result in a compromise of the...

Scout Portal Toolkit 1.3.1 - SPT-AdvancedSearch.php Cross-Site Scripting

Scout Portal Toolkit 1.3.1 - SPT-AdvancedSearch.php Cross-Site Scripting source: https://www.securityfocus.com/bid/15818/info Scout Portal Toolkit is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. A successful exploit cou...

Scout Portal Toolkit 1.3.1 - 'SPT-QuickSearch.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/15818/info Scout Portal Toolkit is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. A successful exploit could allow an attacker to compromise the application, access or modify data...

Arab Portal 2.0 - 'Link.php' SQL Injection

source: https://www.securityfocus.com/bid/15820/info Arab Portal is prone to multiple SQL injection vulnerabilities. These are due to a lack of proper sanitization of user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise of the application,...