39 matches found
EUVD-2006-1890
Malware in sbrugna...
EUVD-2005-2882
Malware in sbrugna...
PT-2025-32987 · Unknown · Lingdang Crm
Name of the Vulnerable Software and Affected Versions: Lingdang CRM versions through 8.6.5.4 Description: A SQL injection issue exists in the crm/WeiXinApp/yunzhijia/event.php file. Manipulation of the openid argument can lead to SQL injection, and the attack can be launched remotely. The exploit...
Sql injection
Church Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/editevent.php...
Sourcecodester Alumni Management System SQL Injection Vulnerability
Sourcecodester Alumni Management System is a Php, Mysql-based alumni management system from Sourcecodester, Inc. SourceCodester Alumni Management System version 1.0 is vulnerable to SQL injection, which allows remote attacker can exploit this vulnerability to execute arbitrary SQL statements via...
Sourcecodester Alumni Management System SQL注入漏洞
Sourcecodester Alumni Management System is a Php, Mysql-based alumni management system from Sourcecodester, Inc. SourceCodester Alumni Management System version 1.0 is vulnerable to SQL injection, which allows remote attacker can exploit this vulnerability to execute arbitrary SQL statements via...
(0Day) Horde Groupware Webmail Edition Event event_alarms Deserialization of Untrusted Data Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Horde Groupware Webmail Edition. Authentication is required to exploit this vulnerability. The specific flaw exists within Event.php. When parsing the eventalarms parameter, the process does not...
Sql injection
SQL Injection exists in Event Manager 1.0 via the event.php id parameter or the page.php slug parameter...
CVE-2018-6576
SQL Injection exists in Event Manager 1.0 via the event.php id parameter or the page.php slug parameter...
CVE-2018-5315
The Wachipi WP Events Calendar plugin 1.0 for WordPress has SQL Injection via the eventid parameter to event.php...
Sql injection
The Wachipi WP Events Calendar plugin 1.0 for WordPress has SQL Injection via the eventid parameter to event.php...
totofolder.jp XSS vulnerability
Vulnerable URL: http://www.totofolder.jp/event.php?id=%22%3E%3Csvg/onload=prompt1%3E Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 4529066 VIP website status:| No Coordinated Disclosure Timeline: Description|...
Aqua Soft SQL /news-event.php Injection Vulnerability
No description provided by source...
Campsite 2.6.1 Event.php g_documentRoot Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/23874/info Campsite is prone to multiple remote file-include vulnerabilities. Exploiting this issue allows remote attackers to execute code in the context of the webserver. This issue affects Campsite 2.6.1. Earlier...
kesako script SQL Injection Vulnerability
Exploit for php platform in category web applications kesako script SQL Injection =================================================================== .:. Exploit Title : kesako Script Sql Injection .:. Author : Microsoft-dz .:. Contact : email protected .:. Dork : intext:powered by kesako...
airVisionNVR 1.1.13 - readfile() Disclosure SQL Injection
airVisionNVR 1.1.13 - readfile Disclosure SQL Injection Exploit Title: airVisionNVR readfile disclosure and sql injection Google Dork: Date: Oct 13, 2012 Exploit Author: pennyGrit Vendor Homepage: http://www.ubnt.com/ Software Link:...
CVE-2012-2363
CVE-2012-2363 affects Moodle 1.9.x prior to 1.9.18. The calendar implementation’s calendar/event.php is vulnerable to SQL injection via a crafted calendar event, allowing remote authenticated users to execute arbitrary SQL commands. The issue originates from unsanitized input used in SQL queries ...
Digital Design CMS SQL Injection
Exploit Title : digitalldesigns Cms Sql Injection Vulnerabilitiy Author : Zarbat.Org & IrIsT.Ir Discovered By : Am!r Home : http://Zarbat.Org/forums/ Software Link : http://www.digitalldesigns.com/ Security Risk : High Version : All Version Tested on : GNU/Linux Ubuntu - Windows Server - win7 Dor...
Unfixed XSS vulnerability at www.theatredenamur.be
Security researcher Atmon3r, has submitted on 13/12/2011 a cross-site-scripting XSS vulnerability affecting www.theatredenamur.be, which at the time of submission ranked 1460143 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 16/12/2011. It is...
Mevin Productions SQL Injection
Exploit Title: mevin productions Sql Injection Vulnerability Date: 30/10/2011 - 23:00 Author: 3spi0n Software Website: http://www.mevin.com/ Tested On: BackTrack 5 - Win7 Ultimate Platform: Php $ Vulnerable File: Event.php $ Dorks: "Powered by: mevin productions" inurl:/event.php?id= $ Demo Sites...