Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-6191

Malware in sbrugna...

7.5CVSS6.4AI score0.01264EPSS
Exploits1References8
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.22 views

Enthrallweb eClassifieds ad.asp Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21192/info eClassifieds is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...

7.1AI score
Exploits0
NVD
NVD
added 2006/12/29 11:28 a.m.16 views

CVE-2006-6822

myprofile.asp in Enthrallweb eClassifieds does not properly validate the MMrecordId parameter during profile updates, which allows remote authenticated users to modify certain profile fields of another account by specifying that account's username in a modified MMrecordId parameter...

3.5CVSS6.2AI score0.01652EPSS
Exploits0References3
0day.today
0day.today
added 2006/12/23 12:0 a.m.21 views

Enthrallweb eClassifieds 1.0 Remote User Pass Change Exploit

Exploit for unknown platform in category web applications ============================================================ Enthrallweb eClassifieds 1.0 Remote User Pass Change Exploit ============================================================ Change Profile=Username FIRST: LAST:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2006/12/23 12:0 a.m.12 views

Enthrallweb eClassifieds 1.0 Remote User Pass Change Exploit

No description provided by source. form action="target/myprofile.asp" method="POST" name="form2" p/p table align="center" cellpadding="1" cellspacing="1" tr valign="baseline" td align="right" nowrap class="title" Change Profile=Username input type="text" name="MMrecordId" value="ajann" /td td inp...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2006/12/23 12:0 a.m.35 views

Enthrallweb eClassifieds 1.0 - Remote User Pass Change

Change Profile=Username FIRST: LAST:...

7.4AI score
Exploits0
CVE
CVE
added 2006/12/01 1:0 a.m.55 views

CVE-2006-6208

Summary: CVE-2006-6208 concerns Enthrallweb eClassifieds with multiple SQL injection vulnerabilities. The vulnerability is triggered via parameters in several endpoints: (1) AD_ID, (2) cat_id, (3) sub_id, and (4) ad_id to ad.asp; (5) cid to dircat.asp; and (6) sid to dirSub.asp. The underlying is...

7.5CVSS8.9AI score0.01264EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2006/12/01 1:0 a.m.24 views

CVE-2006-6208

Multiple SQL injection vulnerabilities in Enthrallweb eClassifieds allow remote attackers to execute arbitrary SQL commands via the 1 ADID, 2 catid, 3 subid, and 4 adid parameters to a ad.asp, the 5 cid parameter to b dircat.asp, and the 6 sid parameter to c dirSub.asp...

8.5AI score0.01264EPSS
Exploits1References7
exploitpack
exploitpack
added 2006/11/20 12:0 a.m.18 views

Enthrallweb eClassifieds - dircat.asp?cid SQL Injection

Enthrallweb eClassifieds - dircat.asp?cid SQL Injection source: https://www.securityfocus.com/bid/21192/info eClassifieds is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2006/11/20 12:0 a.m.16 views

Enthrallweb eClassifieds - ad.asp Multiple SQL Injections

Enthrallweb eClassifieds - ad.asp Multiple SQL Injections source: https://www.securityfocus.com/bid/21192/info eClassifieds is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues coul...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2006/11/20 12:0 a.m.38 views

Enthrallweb eClassifieds - 'dircat.asp?cid' SQL Injection

source: https://www.securityfocus.com/bid/21192/info eClassifieds is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access ...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2006/11/20 12:0 a.m.29 views

Enthrallweb eClassifieds - 'ad.asp' Multiple SQL Injections

source: https://www.securityfocus.com/bid/21192/info eClassifieds is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access ...

7.4AI score
Exploits0
Rows per page
Query Builder