120 matches found
Sql injection
Multiple SQL injection vulnerabilities in directory.php in the Multi-Forums aka Multi Host Forum Pro module 1.3.3, for phpBB and Invision Power Board IPB or IP.Board, allow remote attackers to execute arbitrary SQL commands via the 1 go and 2 cat parameters...
CVE-2007-5688
CVE-2007-5688: Multiple SQL injection vulnerabilities in the Multi-Forums (aka Multi Host Forum Pro) module 1.3.3 for phpBB/IPB, in directory.php, allow remote attackers to execute arbitrary SQL via the (1) go and (2) cat parameters. Affected software is the Multi-Forums module version 1.3.3; roo...
Multi-Forums - Directory.php Multiple SQL Injections
Multi-Forums - Directory.php Multiple SQL Injections source: https://www.securityfocus.com/bid/26213/info Multi-Forums is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in SQL queries. Exploiting these issues could allo...
Multi-Forums - 'Directory.php' Multiple SQL Injections
source: https://www.securityfocus.com/bid/26213/info Multi-Forums is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in SQL queries. Exploiting these issues could allow an attacker to compromise the application, access o...
CVE-2007-4258
CVE-2007-4258: SQL injection in Prozilla Pub Site Directory’s directory.php via the cat parameter. Remote attackers can execute arbitrary SQL commands. Affected: Prozilla Pub Site Directory (directory.php) with cat parameter. Root cause: unsafely built SQL queries allowing injection. Impact: part...
Unfixed XSS vulnerability at www.forumfree.org
Security researcher St@rExT, has submitted on 08/06/2007 a cross-site-scripting XSS vulnerability affecting www.forumfree.org, which at the time of submission ranked 65217 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 08/06/2007. It is...
Unfixed XSS vulnerability at s4.forumfree.org
Security researcher St@rExT, has submitted on 08/06/2007 a cross-site-scripting XSS vulnerability affecting s4.forumfree.org, which at the time of submission ranked 46879 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 08/06/2007. It is current...
Prozilla Pub Site Directory (directory.php cat) SQL Injection Vulnerbility
Exploit for unknown platform in category web applications ========================================================================== Prozilla Pub Site Directory directory.php cat SQL Injection Vulnerbility ==========================================================================...
CVE-2007-4056
SQL injection vulnerability in directory.php in Prozilla Adult Directory allows remote attackers to execute arbitrary SQL commands via the catid parameter in a list action. NOTE: the original report indicated that this was the "photo" SourceForge project aka Maan Bsat Photo Collection, but that w...
CVE-2007-4056
CVE-2007-4056 affects Prozilla Adult Directory (directory.php). The vulnerability is an SQL injection in the list action via the cat_id parameter, enabling remote attackers to execute arbitrary SQL commands. The connected documents confirm the vulnerable component and root cause but do not provid...
Sql injection
Multiple SQL injection vulnerabilities in Prozilla Directory Script allow remote attackers to execute arbitrary SQL commands via the catid parameter in a list action to directory.php, and other unspecified vectors...
CVE-2007-3809
Multiple SQL injection vulnerabilities in Prozilla Directory Script allow remote attackers to execute arbitrary SQL commands via the catid parameter in a list action to directory.php, and other unspecified vectors...
Prozilla Directory Script (directory.php cat_id) SQL Injection Vulnerbility
Exploit for unknown platform in category web applications =========================================================================== Prozilla Directory Script directory.php catid SQL Injection Vulnerbility ===========================================================================...
Prozilla Directory Script - 'Directory.php?cat_id' SQL Injection
--==+================================================================================+==-- --==+ Prozilla Directory Script SQL Injection Vulnerbility +==-- --==+================================================================================+==-- AUTHOR: t0pP8uZz & xprog SITE:...
Unfixed XSS vulnerability at rss.com.tv
Security researcher Narcoticxs, has submitted on 07/08/2007 a cross-site-scripting XSS vulnerability affecting rss.com.tv, which at the time of submission ranked 24422 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 08/08/2007. It is currently...
Unfixed XSS vulnerability at liste.net
Security researcher St@rExT, has submitted on 30/05/2007 a cross-site-scripting XSS vulnerability affecting liste.net, which at the time of submission ranked 469546 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 31/05/2007. It is currently...
Unfixed XSS vulnerability at forumlari.org
Security researcher St@rExT, has submitted on 30/05/2007 a cross-site-scripting XSS vulnerability affecting forumlari.org, which at the time of submission ranked 154300 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 01/06/2007. It is currently...
Unfixed XSS vulnerability at 1nr.net
Security researcher St@rExT, has submitted on 30/05/2007 a cross-site-scripting XSS vulnerability affecting 1nr.net, which at the time of submission ranked 217642 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 31/05/2007. It is currently...
Unfixed XSS vulnerability at tabir.net
Security researcher St@rExT, has submitted on 30/05/2007 a cross-site-scripting XSS vulnerability affecting tabir.net, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 31/05/2007. It is currently unfixed...
Unfixed XSS vulnerability at dilber.net
Security researcher St@rExT, has submitted on 30/05/2007 a cross-site-scripting XSS vulnerability affecting dilber.net, which at the time of submission ranked 11255572 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 01/06/2007. It is currently...