63 matches found
rmsoftminishop-xss.txt
RMSOFT MiniShop module multiple variable XSS Vendor url:http://redmexico.com.mx Advisore:http://lostmon.blogspot.com/2008/08 /rmsoft-minishop-module-multiple.html Vendor notify:no exploit available:yes RMSOFT MiniShop is a E-commerce php/Mysql script module for multiple CMS Systems like...
exoopsglossaire-sql.txt
XOOPS module glossaire SQL Injection powered by e-xoopsglossaireSQL Injection AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MAiL : [email protected] DORK 1 : allinurl: id "modules glossaire" EXPLOIT :...
exoopsmyadress-sql.txt
powered by e-xoopsmyadressSQL Injection AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MAiL : [email protected] DORK 1 : allinurl: "/modules/myadress/" EXPLOIT :...
bcoosexoops-xss.txt
bcoos & E-xoops DevTracker module two variables XSS vendor url: http://www.bcoos.net Vendor url: http://www.e-xoops.com Advisore: http://lostmon.blogspot.com/2008/02/ bcoos-and-e-xoops-devtracker-module-two.html vendor notify:yes exploits available: YES bcoos and E-xoops are two content-community...
DevTracker Module For bcoos 1.1.11 and E-xoops 1.0.8 - Multiple Cross-Site Scripting Vulnerabilities
DevTracker Module For bcoos 1.1.11 and E-xoops 1.0.8 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/27619/info DevTracker module for bcoos and E-xoops is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize...
DevTracker Module For bcoos 1.1.11 and E-xoops 1.0.8 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/27619/info DevTracker module for bcoos and E-xoops is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser o...
CVE-2007-6380
Multiple SQL injection vulnerabilities in e-Xoops exoops 1.08, and 1.05 Rev 1 through 3, allow remote attackers to execute arbitrary SQL commands via the 1 lid parameter to a mylinks/ratelink.php, b adresses/ratefile.php, c mydownloads/ratefile.php, d mysections/ratefile.php, and e...
Sql injection
Multiple SQL injection vulnerabilities in e-Xoops exoops 1.08, and 1.05 Rev 1 through 3, allow remote attackers to execute arbitrary SQL commands via the 1 lid parameter to a mylinks/ratelink.php, b adresses/ratefile.php, c mydownloads/ratefile.php, d mysections/ratefile.php, and e...
CVE-2007-6380
CVE-2007-6380 describes multiple SQL injection vulnerabilities in e-Xoops (exoops) versions 1.08 and 1.05 Rev 1–3. The flaws allow remote attackers to execute arbitrary SQL commands via the parameter lid targeting various scripts under modules/ (mylinks/ratelink.php, adresses/ratefile.php, mydown...
CVE-2007-6380
Multiple SQL injection vulnerabilities in e-Xoops exoops 1.08, and 1.05 Rev 1 through 3, allow remote attackers to execute arbitrary SQL commands via the 1 lid parameter to a mylinks/ratelink.php, b adresses/ratefile.php, c mydownloads/ratefile.php, d mysections/ratefile.php, and e...
E-Xoops 1.0.51.0.8 - mysectionsratefile.php?lid SQL Injection
E-Xoops 1.0.51.0.8 - mysectionsratefile.php?lid SQL Injection source: https://www.securityfocus.com/bid/26796/info E-Xoops is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could...
E-Xoops 1.0.51.0.8 - mydownloadsratefile.php?lid SQL Injection
E-Xoops 1.0.51.0.8 - mydownloadsratefile.php?lid SQL Injection source: https://www.securityfocus.com/bid/26796/info E-Xoops is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues coul...
E-Xoops 1.0.51.0.8 - myalbumratephoto.php?lid SQL Injection
E-Xoops 1.0.51.0.8 - myalbumratephoto.php?lid SQL Injection source: https://www.securityfocus.com/bid/26796/info E-Xoops is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could...
E-Xoops 1.0.51.0.8 - mylinksratelink.php?lid SQL Injection
E-Xoops 1.0.51.0.8 - mylinksratelink.php?lid SQL Injection source: https://www.securityfocus.com/bid/26796/info E-Xoops is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could...
E-Xoops 1.0.51.0.8 - adressesratefile.php?lid SQL Injection
E-Xoops 1.0.51.0.8 - adressesratefile.php?lid SQL Injection source: https://www.securityfocus.com/bid/26796/info E-Xoops is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could...
E-Xoops 1.0.51.0.8 - modulesbannersclick.php?bid SQL Injection
E-Xoops 1.0.51.0.8 - modulesbannersclick.php?bid SQL Injection source: https://www.securityfocus.com/bid/26796/info E-Xoops is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues coul...
exoops-sql.txt
E-xoops multiple variable/scripts SQL injection vendor url: http://www.e-xoops.com Advisore: http://lostmon.blogspot.com/2007/12/ e-xoops-multiple-variablescripts-sql.html vendor notify:NO exploits available: YES E-xoops is content-community management system written in PHP-MySQL. E-xoops contain...
E-Xoops 1.0.51.0.8 - modulesarcadeindex.php?gid SQL Injection
E-Xoops 1.0.51.0.8 - modulesarcadeindex.php?gid SQL Injection source: https://www.securityfocus.com/bid/26796/info E-Xoops is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could...
E-Xoops 1.0.5/1.0.8 - '/modules/arcade/index.php?gid' SQL Injection
source: https://www.securityfocus.com/bid/26796/info E-Xoops is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access or...
E-Xoops 1.0.5/1.0.8 - '/myalbum/ratephoto.php?lid' SQL Injection
source: https://www.securityfocus.com/bid/26796/info E-Xoops is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access or...