7 matches found
EUVD-2010-2369
Malware in sbrugna...
EUVD-2007-1700
Malware in sbrugna...
CVE-2010-2359
SQL injection vulnerability in eWebQuiz.asp in ActiveWebSoftwares.com eWebquiz 8 allows remote attackers to execute arbitrary SQL commands via the QuizType parameter, a different vector than CVE-2007-1706...
Sql injection
Multiple SQL injection vulnerabilities in Active Web Softwares eWebquiz 8 allow remote attackers to execute arbitrary SQL commands via the QuizID parameter to 1 questions.asp, 2 importquestions.asp, and 3 quiztakers.asp, different vectors than CVE-2007-1706...
CVE-2009-4436
CVE-2009-4436 describes multiple SQL injection vulnerabilities in Active Web Software’s eWebquiz 8. Attackable vectors are the QuizID parameter passed to (1) questions.asp, (2) importquestions.asp, and (3) quiztakers.asp. The issue allows remote attackers to execute arbitrary SQL commands. These ...
CVE-2009-4436
Multiple SQL injection vulnerabilities in Active Web Softwares eWebquiz 8 allow remote attackers to execute arbitrary SQL commands via the QuizID parameter to 1 questions.asp, 2 importquestions.asp, and 3 quiztakers.asp, different vectors than CVE-2007-1706...
CVE-2007-1706
The CVE-2007-1706 entry describes a SQL injection in eWebQuiz.asp of eWebQuiz 8, allowing remote attackers to execute arbitrary SQL via the QuizID parameter. The vulnerability is caused by inadequate input handling in eWebQuiz.asp, enabling manipulation of the backend database. According to the l...