CVE-2022-31384

CVE-2022-31384 affects Directory Management System v1.0, with a SQL injection vulnerability in add-directory.php exploitable via the fullname parameter due to insufficient input validation. Affected component is the add-directory.php endpoint; the issue enables arbitrary SQL execution and potenti...

ogero.gov.lb XSS vulnerability

Open Bug Bounty ID: OBB-612604 Description| Value ---|--- Affected Website:| ogero.gov.lb Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

CVE-2018-7193

Cross-site scripting XSS vulnerability in /scp/directory.php in Enhancesoft osTicket before 1.10.2 allows remote attackers to inject arbitrary web script or HTML via the "order" parameter...

keighley.gov.uk XSS vulnerability

Open Bug Bounty ID: OBB-552513 Description| Value ---|--- Affected Website:| keighley.gov.uk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

keighley.gov.uk XSS vulnerability

Open Bug Bounty ID: OBB-519684 Description| Value ---|--- Affected Website:| keighley.gov.uk Open Bug Bounty Program:| Not created yet Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N...

skylinecollege.edu XSS vulnerability

Vulnerable URL: http://skylinecollege.edu/search/directory.php?keyword=" Details: Description| Value ---|--- Patched:| No Latest check for patch:| 04.12.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 234524 VIP website status:| No Coordinated Disclosure...

townplan.gov.my XSS vulnerability

Vulnerable URL: http://www.townplan.gov.my/directory.php Details: Description| Value ---|--- Patched:| No Latest check for patch:| 02.12.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 390293 VIP website status:| No Coordinated Disclosure Timeline: Description|...

rcm.k0jpr.net XSS vulnerability

Vulnerable URL: http://rcm.k0jpr.net/directory.php?S=KS" Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check rcm.k0jpr.net SSL...

pipelinepub.com XSS vulnerability

Vulnerable URL: http://www.pipelinepub.com/info/members/members-directory.php?q=OPENBUGBOUNTY" autofocus onfocus=prompt"OPENBUGBOUNTY" " Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa...

Prozilla Directory Script (directory.php cat_id) SQL Injection Vulnerbility

No description provided by source. --==+================================================================================+==-- --==+ Prozilla Directory Script SQL Injection Vulnerbility +==-- --==+================================================================================+==-- AUTHOR: t0pP8uZ...

Prozilla Hosting Index (directory.php cat_id) - SQL Injection Vulnerability

No description provided by source. \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV88$2008 ----------------------------------------------------------------------------------------- ECHOADV88$2008 Prozilla Hosting Index directory.php catid Blind Sql...

Funnel Web (directory.php?cid) Remote SQL injection Vulnerability

IRANIAN THE BEST HACKERS IN THE WORLD Remote SQL injection Vulnerability Funnel Web directory.php?cid AuTh0r : EhsanHp200 H0ME : www.ehsanhp.blogsky.com Email : [email protected] Vendor : http://www.funnel-web.com.au/ Persian Gulf 4 Ever! Dork : "Web site design by Funnel Web"...

Sql injection

directory.php in AJchat 0.10 allows remote attackers to bypass input validation and conduct SQL injection attacks via a numeric parameter with a value matching the s parameter's hash value, which prevents the associated $GET"s" variable from being unset. NOTE: it could be argued that this...

CVE-2008-7210

directory.php in AJchat 0.10 allows remote attackers to bypass input validation and conduct SQL injection attacks via a numeric parameter with a value matching the s parameter's hash value, which prevents the associated $GET"s" variable from being unset. NOTE: it could be argued that this...

CVE-2008-7210

CVE-2008-7210 affects AJchat 0.10. In directory.php, remote attackers can bypass input validation and perform SQL injection via a numeric parameter whose value matches the s parameter hash, which prevents $_GET["s"] from being unset. A note in the entry contends the issue may stem from a PHP unse...

CVE-2008-6794

SQL injection vulnerability in directory.php in Scripts For Sites SFS EZ Pub Site allows remote attackers to execute arbitrary SQL commands via the cat parameter...

Sql injection

SQL injection vulnerability in directory.php in Scripts For Sites SFS EZ Pub Site allows remote attackers to execute arbitrary SQL commands via the cat parameter...

CVE-2008-6794

SQL injection vulnerability in directory.php in Scripts For Sites SFS EZ Pub Site allows remote attackers to execute arbitrary SQL commands via the cat parameter...

Sql injection

SQL injection vulnerability in directory.php in Sites for Scripts SFS Gaming Directory allows remote attackers to execute arbitrary SQL commands via the catid parameter in a list action...

Sql injection

SQL injection vulnerability in directory.php in Scripts For Sites SFS EZ Adult Directory allows remote attackers to execute arbitrary SQL commands via the catid parameter in a list action...