ResourceSpace CMS 7.3.7009 SQL Injection Vulnerability

ResourceSpace CMS versions 7.3.7009 and below suffer from a remote SQL injection vulnerability. Title: Blind boolean sql injection vulnerability in ResourceSpace CMS Author: William F. Reyor III Contact: email protected Published: August 22 2015 Vendor: Montala Limited Vendor url:...

PloggerGallery 1.0 RC1 CSRF / XSS / SQL Injection Vulnerabilities

PloggerGallery version 1.0 RC1 suffers from cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities. ------------------------------------------------------------------------- Software : PloggerGallery Version 1.0 RC1 Author : Saadat Ullah Date : 2/3/13 Dork : Us...

Plogger - Multiple Input Validation Vulnerabilities

Plogger - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/58271/info Plogger is prone to following input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data: 1. An SQL-injection vulnerability 2. Multiple cross-site scripting...

Metinfo 5.0.2 feedback.php Sql注入

No description provided by source...

dedeCMS latest injection vulnerability a gold-bug warning-the black bar safety net

Brief description: Since the parameters of the variables not be initialized testing and using the class reflection skills leads to plus\feedback.php in the variable $typeid presence of injection risk. Detailed description: Since the official has already released patches and vulnerabilities are no...

YourOnlineAgents CMS Cross Site Scripting

Exploit Title: YourOnlineAgents cms Cross Site Scripting Google Dork:intext :Powered By YourOnlineAgents.com Date: 08/7/2012 Author: Crim3R Cms Creator home : http://www.youronlineagents.com/ Version: - Tested on: all ======================================== In feedback.php file set agentid to yo...

Woven dream CMS system - visitors unlimited brush the top step on the value-vulnerability warning-the black bar safety net

Brief description: only tested DEDECMS V5. 7 system,the previous version of the estimates is the same. In the official address to be a simple test,should be regarded as a small BUG,using this you can infinite brush an article of the top/tread value. Detailed description: although the front page d...

Sql injection

Multiple SQL injection vulnerabilities in ITechBids 8.0 allow remote attackers to execute arbitrary SQL commands via the 1 userid parameter to feedback.php, 2 cateid parameter to category.php, 3 id parameter to news.php, and 4 productid parameter to itechd.php. NOTE: the sellersothersitem.php,...

CVE-2009-3712

Multiple SQL injection vulnerabilities in Ebay Clone 2009 allow remote attackers to execute arbitrary SQL commands via the 1 userid parameter to feedback.php; and the itemid parameter to 2 viewfullsize.php, 3 classifidead.php, and 4 crosspromoteitems.php...

CVE-2009-2589

Multiple cross-site scripting XSS vulnerabilities in Hutscripts PHP Website Script allow remote attackers to inject arbitrary web script or HTML via the msg parameter to 1 feedback.php, 2 index.php, and 3 lostpassword.php...

Ebay Clone 2009 SQL Injection

---------------------------------------------------------------------------------------------------- Name : Ebay Clone 2009 Multiple SQL Injection Vulnerabilities Site : http://www.ebayclonescript.com/ Demo : http://ebayclonescript.com/ebayclone2009/...

Ebay Clone 2009 - Multiple SQL Injections

---------------------------------------------------------------------------------------------------- Name : Ebay Clone 2009 Multiple SQL Injection Vulnerabilities Site : http://www.ebayclonescript.com/ Demo : http://ebayclonescript.com/ebayclone2009/...

CVE-2006-1638

Multiple SQL injection vulnerabilities in aWebBB 1.2 allow remote attackers to execute arbitrary SQL commands via the 1 Username parameter to a accounts.php, b changep.php, c editac.php, d feedback.php, e fpass.php, f login.php, g post.php, h reply.php, or i replylog.php; 2 p parameter to j...