13 matches found
EUVD-2010-0979
Malware in sbrugna...
Pre E-Learning Portal 'search_result.asp' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/38582/info Pre E-Learning Portal is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...
CVE-2010-0954
SQL injection vulnerability in searchresult.asp in Pre Projects Pre E-Learning Portal allows remote attackers to execute arbitrary SQL commands via the courseID parameter...
Sql injection
SQL injection vulnerability in searchresult.asp in Pre Projects Pre E-Learning Portal allows remote attackers to execute arbitrary SQL commands via the courseID parameter...
CVE-2010-0954
SQL injection vulnerability in searchresult.asp in Pre Projects Pre E-Learning Portal allows remote attackers to execute arbitrary SQL commands via the courseID parameter...
CVE-2010-0954
CVE-2010-0954 corresponds to a SQL injection vulnerability in the Pre Projects Pre E-Learning Portal, specifically in search_result.asp where the course_ID parameter can be exploited to execute arbitrary SQL commands. The connected documents confirm the vulnerability details and affected componen...
Pre E-Learning Portal - 'search_result.asp' SQL Injection
source: https://www.securityfocus.com/bid/38582/info Pre E-Learning Portal is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access o...
Pre E-Learning Portal SQL Injection
=============================================================================================== o Pre E-Learning Portal SQL Injection Vulnerability Software : Pre E-Learning Portal Vendor : http://www.preproject.com/ Demo : http://www.preprojects.com/elearning/ Author : NoGe Contact :...
CVE-2008-6052
PreProjects Pre E-Learning Portal stores dbelearning.mdb under the web root with insufficient access control, which allows remote attackers to obtain passwords via a direct request...
Improper access control
PreProjects Pre E-Learning Portal stores dbelearning.mdb under the web root with insufficient access control, which allows remote attackers to obtain passwords via a direct request...
CVE-2008-6052
The CVE-2008-6052 entry concerns the PreProjects Pre E-Learning Portal, where the web root improperly stores the database file db_elearning.mdb, leading to insufficient access control. This exposure can allow remote attackers to directly request the database and obtain passwords. The available so...
CVE-2008-6052
PreProjects Pre E-Learning Portal stores dbelearning.mdb under the web root with insufficient access control, which allows remote attackers to obtain passwords via a direct request...
Pre E-Learning Portal Database Disclosure
--------------------------------------------------------- Portal Name: Pre E-Learning Portal Vendor : http://preproject.com/elearning.asp Author : PouyaServer , [email protected] Vulnerability : DD --------------------------------------------------------- DD:...