759 matches found
ASPIntranet 2.1 Mutiple SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/21105/info ASPIntranet is prone to multiple SQL-injection vulnerabilities because the application fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an...
Web News 1.1 news.php config[root_ordner] Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/25257/info WebNews is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these issues may allow an attacker to compromise the application and th...
PHP-Nuke Gallery 1.3 Module - 'artid' Parameter SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/27957/info The Gallery module for PHP-Nuke is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...
Internet Explorer 5.5/6.0/7.0 JavaScript Key Filtering Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/18308/info Multiple web browsers are prone to a JavaScript key-filtering vulnerability because the browsers fail to securely handle keystroke input from users. This issue is demonstrated to allow attackers to divert...
phpCMS 1.1.7 include/class.cache_phpcms.php PHPCMS_INCLUDEPATH Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/21768/info phpCMS is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the...
Centreon 1.4.2.3 - index.php Local File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/28052/info Centreon is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. Exploiting this issue may allow an attacker to obtain potentially sensitive information that ma...
PHPMyTGP 1.4 AddVIP.PHP Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/23657/info PHPMyTGP is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue may allow an attacker to compromise the application and the underlyi...
Ahhp Portal Page.PHP Multiple Remote File Include Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/23658/info Ahhp Portal is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and...
fuzzylime (cms) 3.0 'usercheck.php' Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/31306/info fuzzylime cms is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. Exploiting this vulnerability may allow an attacker to perform cross-site scripting...
ASP Nuke - SQL Injection Vulnerability
No description provided by source. ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub11-asp-nuke-sql-injection-vulnerability/ ''' Abysssec Inc Public Advisory Title : ASP Nuke Sql Injection...
Mani's Admin Plugin Remote Denial Of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/34685/info Mani's Admin Plugin is prone to a remote denial-of-service vulnerability. Exploiting this issue allows remote attackers to crash the application, denying further service to legitimate users. alias aspam...
PuterJam\'s Blog PJBlog3 3.0.6 \'action.asp\' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/34701/info PJBlog3 is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
Zenoss 2.3.3 Multiple SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/37802/info Zenoss is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...
ASPPlayground.NET 3.2 SR1 Remote Arbitrary File Upload Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/14070/info ASPPlayground.NET is prone to a remote arbitrary file-upload vulnerability. Exploiting this issue may allow remote attackers to upload arbitrary files including malicious scripts and possibly execute the script...
ClanLite Config-PHP.PHP Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20672/info ClanLite is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the underlyin...
GnuPG 1.x Detached Signature Verification Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/16663/info GnuPG is affected by a detached signature verification-bypass vulnerability because it fails to properly notify scripts that an invalid detached signature was presented and that the verification process has...
SQLiteManager 1.2 Main.PHP Multiple HTML Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/22731/info SQLiteManager is prone to multiple HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues may allow an attacker to execute HTML and script cod...
Move Media Player 1.0 Quantum Streaming ActiveX Control Multiple Buffer Overflow Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/25529/info Move Media Player is prone to multiple remote buffer-overflow vulnerabilities because the application fails to properly bounds-check user-supplied data before copying it into insufficiently sized memory buffers...
TinyPHPForum 3.6 Error.PHP Information Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/19278/info TinyPHPForum is prone to an information-disclosure vulnerability. This issue arises when a script allows a remote untrusted source to change a victim user's email address, and have their login credentials...
Vana CMS 'filename' Parameter Remote File Download Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/39415/info Vana CMS is prone to a vulnerability that lets attackers download arbitrary files. The issue occurs because the application fails to sufficiently sanitize user-supplied input. Exploiting this issue will allow a...