87 matches found
Sql injection
Multiple SQL injection vulnerabilities in AbleSpace 1.0 allow remote attackers to execute arbitrary SQL commands via the 1 eid parameter to eventsview.php and the 2 id parameter to eventsclndrview.php...
CVE-2008-2012
CVE-2008-2012 affects the PostSchedule 1.0 module for PostNuke. A SQL injection in index.php allows remote attackers to modify the database by supplying the eid parameter in an event action. Documented impact: arbitrary SQL execution with a CVSSv2 base score of 7.5 (HIGH). No remediation details ...
CVE-2007-2621
SQL injection vulnerability in eventview.php in Thyme Calendar 1.3 allows remote attackers to execute arbitrary SQL commands via the eid parameter...
Sql injection
SQL injection vulnerability in eventview.php in Thyme Calendar 1.3 allows remote attackers to execute arbitrary SQL commands via the eid parameter...
Thyme event_view.php eid Parameter SQL Injection
The remote host is running Thyme, a web-based calendar. The version of Thyme installed on the remote host fails to properly sanitize user-supplied input to the 'eid' parameter of the 'eventview.php' script before using it to build a database query. Regardless of PHP's 'magicquotesgpc' setting, an...
CVE-2005-0217
SQL injection vulnerability in index.php in Invision Community Blog allows remote attackers to execute arbitrary SQL commands via the eid parameter...
CVE-2005-0217
SQL injection vulnerability in index.php in Invision Community Blog allows remote attackers to execute arbitrary SQL commands via the eid parameter...