CVE-2012-3822

Arial Campaign Enterprise before 11.0.551 has unauthorized access to the User-Edit.asp page, which allows remote attackers to enumerate users' credentials...

CVE-2012-3822

CVE-2012-3822 affects Arial Campaign Enterprise before v11.0.551. The vulnerability is an unauthorized access issue on the User-Edit.asp page that enables remote attackers to enumerate users’ credentials, i.e., information disclosure of credentials. The root cause is access to a user-edit interfa...

Sql injection

SQL injection vulnerability in edit.asp in Mavili Guestbook, as released in November 2007, allows remote attackers to execute arbitrary SQL commands via the id parameter...

CVE-2012-5297

SQL injection vulnerability in edit.asp in Mavili Guestbook, as released in November 2007, allows remote attackers to execute arbitrary SQL commands via the id parameter...

CVE-2012-5297

CVE-2012-5297 is a SQL injection vulnerability in the edit.asp page of Mavili Guestbook, exploitable via the id parameter. The issue allows remote attackers to execute arbitrary SQL commands. The description states the flaw existed since November 2007. No specific affected versions, fixes, or rem...

CJWSoft ASPGuest GuestBook 'edit.asp' - SQL Injection Vulnerability

Title: CJWSoft ASPGuest GuestBook 'edit.asp' - SQL Injection Vulnerability Product : CJWSoft ASPGuest GuestBook Version : Free Version Vendor: http://www.cjwsoft.com/aspguest/default.asp Class: Input Validation Error CVE: Remote: Yes Local: No Published: 2012-02-24 Updated: Impact : Medium CVSSv2...

ASPGuest (edit.asp ID) Blind SQL Injection

Exploit for unknown platform in category web applications ========================================== ASPGuest edit.asp ID Blind SQL Injection ========================================== Err0r C0N50L3: www.target.com/path/admin/edit.asp?ID=EV!L blind sql EV!L BL!ND sql 7Ru3 : campaignEdit.asp?CCam=...

ASPGuest (edit.asp ID) Blind SQL Injection

No description provided by source. ? ?????????????????????????In The Name Of Allah The Mercifull?????????????????????? ? Tybe:edit.asp ID Blind SQL Injection Vulnerability Vendor: www.cjwsoft.com Software: ASPGuest free author: R3d-D3v!L Date: 17.dec.2009 T!ME: 3:03 am ? Home: WwW.xP10.ME ?...

ASPGuest - 'edit.asp?ID' Blind SQL Injection

? ?????????????????????????In The Name Of Allah The Mercifull?????????????????????? ? Tybe:edit.asp ID Blind SQL Injection Vulnerability Vendor: www.cjwsoft.com Software: ASPGuest free author: R3d-D3v!L Date: 17.dec.2009 T!ME: 3:03 am ? Home: WwW.xP10.ME ? contact: N/A ?...

DUWare DUgallery 3.0 - '/admin/edit.asp' Authentication Bypass

source: https://www.securityfocus.com/bid/36049/info DUgallery is prone to an authentication-bypass vulnerability. An attacker can exploit this issue to gain unauthorized administrative access to the affected application. Successfully exploiting this issue will lead to other attacks. DUgallery 3....

CVE-2006-6193

CVE-2006-6193 is a SQL injection vulnerability in the edit.asp page of BasicForum 1.1 and earlier. The flaw allows remote attackers to execute arbitrary SQL commands through the id parameter. Documented impact is partial confidentiality, integrity, and availability loss, with network access, no a...

CVE-2006-6191

CVE-2006-6191 affects 8pixel.net SimpleBlog prior to or including version 2.3. The vulnerability is an SQL injection in admin/edit.asp via the id parameter, allowing remote attackers to execute arbitrary SQL commands. The NVD entry corroborates a possible high-severity impact with base score 7.5 ...

SimpleBlog <= 2.3 (admin/edit.asp) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ===================================================================== SimpleBlog = 2.3 admin/edit.asp Remote SQL Injection Vulnerability ===================================================================== Title : simpleblog = v 2.3...

Basic Forum 1.1 - &#039;edit.asp&#039; SQL Injection

Title : basicforum v 1.1 edit.asp Remote SQL Injection Vulnerability Author : bolivar Dork : "This script created by www.script.canavari.com" ---------------------------------------------------------------------------...

CVE-2006-2264

CVE-2006-2264 affects Ocean12 Calendar Manager Pro 1.00, with multiple SQL injection vulnerabilities that allow a remote attacker to execute arbitrary SQL commands via (1) date parameter to admin/main.asp, (2) SearchFor parameter to admin/view.asp, or (3) ID parameter to admin/edit.asp. The explo...

CVE-2004-2653

Unspecified vulnerability in PD9 Software MegaBBS 2.0 and 2.1 allows attackers to gain privileges via unknown vectors involving 1 admin/userlevelmembers-edit.asp and 2 admin/edit-groups.asp...