Systeme de vote pour site Web 1.0 Multiple Remote File Include Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/25335/info 'Systeme de vote pour site Web' is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these issues may allow an attacker to compromis...

PHP Event Calendar 1.4/1.5 Index.PHP Multiple Cross Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/20001/info PHP Event Calendar is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based...

Woltlab Burning Board 2.3.6 - Multiple HTML Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/22796/info Woltlab Burning Board is prone to multiple HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues may allow an attacker to execute HTML and...

Magic Photo Storage Website admin/list_members.php _config[site_path] Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/21965/info Magic Photo Storage Website is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the...

Novell GroupWise 5.57e/6.5.7/7.0 WebAccess Multiple Cross Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/27582/info Novell GroupWise WebAccess is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Exploiting these issues may allow an attacker to perform cross-sit...

Lussumo Vanilla <= 1.1.10 'definitions.php' Multiple Remote File Include Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/38889/info Vanilla is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the...

IceWarp Merak Mail Server 9.4.1 Groupware Component Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/34820/info IceWarp Merak Mail Server is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an...

File Uploader 1.1 index.php config[root_ordner] Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/25253/info File Uploader is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these issues may allow an attacker to compromise the application...

AssistMyTeam Team Helpdesk - Multiple Information Disclosure Vulnerabilities

AssistMyTeam Team Helpdesk - Multiple Information Disclosure Vulnerabilities source: https://www.securityfocus.com/bid/67271/info AssistMyTeam Team Helpdesk is prone to multiple information-disclosure vulnerabilities. Successfully exploiting these issues may allow an attacker to obtain sensitive...

Dredge School Administration System - &#039;/DSM/loader.php&#039; Cross-Site Request Forgery (Admin Account Manipulation)

source: https://www.securityfocus.com/bid/64720/info Dredge School Administration System is prone to the following security vulnerabilities: 1. An SQL-injection vulnerability 2. A cross-site request forgery vulnerability 3. A cross-site scripting vulnerability 4. An information-disclosure...

PrestaShop - Multiple Cross-Site Request Forgery Vulnerabilities

PrestaShop - Multiple Cross-Site Request Forgery Vulnerabilities source: https://www.securityfocus.com/bid/61158/info PrestaShop is prone to multiple cross-site request-forgery vulnerabilities. Exploiting these issues may allow a remote attacker to perform certain unauthorized actions in the...

Webglimpse 2.x - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/52170/info Webglimpse is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to execute arbitrary script on the affected server and steal...

PHPShop CMS 3.4 - Multiple Cross-Site Scripting SQL Injections

PHPShop CMS 3.4 - Multiple Cross-Site Scripting SQL Injections source: https://www.securityfocus.com/bid/51130/info PHPShop CMS is prone to multiple cross-site scripting and SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically...

Novell Groupwise 8.0 - Multiple Remote Vulnerabilities

source: https://www.securityfocus.com/bid/44732/info Novell GroupWise is prone to multiple security vulnerabilities, including multiple remote code-execution vulnerabilities, an information-disclosure issue, and a cross-site scripting issue. Exploiting these issues could allow an attacker to stea...

Dolphin <= 7.0.3 Multiple Vulnerabilities

Dolphin is prone to an SQL injection SQLi and an information disclosure vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Octeth Oempro 3.5.5 - Multiple SQL Injections

source: https://www.securityfocus.com/bid/32784/info Octeth Oempro is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access...

V-Webmail 1.6.4 - &#039;/includes/prepend.php?CONFIG[includes]&#039; Remote File Inclusion

source: https://www.securityfocus.com/bid/30162/info V-webmail is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues can allow an attacker to compromise the application and the underlying system; other attack...

Wireshark 1.0.0 - Multiple Denial of Service Vulnerabilities

Wireshark 1.0.0 - Multiple Denial of Service Vulnerabilities source: https://www.securityfocus.com/bid/30020/info Wireshark is prone to multiple vulnerabilities, including an information-disclosure issue and denial-of-service issues. Exploiting these issues may allow attackers to obtain potential...

Claroline 1.7.5 - Multiple Remote File Inclusions

source: https://www.securityfocus.com/bid/29162/info Claroline is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow a remote attacker to compromise the application and the underlying system; other...

Quick Classifieds 1.0 - &#039;controlpannel/alterCats.php3?DOCUMENT_ROOT&#039; Remote File Inclusion

source: https://www.securityfocus.com/bid/28417/info Quick Classifieds is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the underlying system; othe...