96 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in admin/editFacility.php in the wp-easybooking plugin 1.0.3 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the fID parameter...
CVE-2014-4584
Cross-site scripting XSS vulnerability in admin/editFacility.php in the wp-easybooking plugin 1.0.3 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the fID parameter...
CVE-2009-4695
SQL injection vulnerability in index.php in RadScripts RadLance Gold 7.5 allows remote attackers to execute arbitrary SQL commands via the fid parameter in a viewforum action...
Sql injection
SQL injection vulnerability in index.php in RadScripts RadLance Gold 7.5 allows remote attackers to execute arbitrary SQL commands via the fid parameter in a viewforum action...
CVE-2009-4696
SQL injection vulnerability in index.php in RadNICS Gold 5 allows remote attackers to execute arbitrary SQL commands via the fid parameter in a viewforum action...
Sql injection
SQL injection vulnerability in index.php in RadNICS Gold 5 allows remote attackers to execute arbitrary SQL commands via the fid parameter in a viewforum action...
CVE-2009-4696
RadNICS Gold 5 contains a SQL injection in index.php via the fid parameter in the view_forum action, allowing remote attackers to execute arbitrary SQL commands. No remediation details are provided in the supplied documents.
CVE-2009-4694
RadScripts RadLance Gold 7.5 is affected by CVE-2009-4694: an XSS vulnerability in index.php via the fid parameter in a view_forum action. The vulnerability permits remote script/HTML injection, potentially impacting user sessions. According to NVD, the CVSS2 base score is 4.3 (Medium) with vecto...
CVE-2009-4695
SQL injection vulnerability in index.php in RadScripts RadLance Gold 7.5 allows remote attackers to execute arbitrary SQL commands via the fid parameter in a viewforum action...
CVE-2009-4696
SQL injection vulnerability in index.php in RadNICS Gold 5 allows remote attackers to execute arbitrary SQL commands via the fid parameter in a viewforum action...
Open Bulletin Board Blind SQL Injection
Open Bulletin Board Multiple Blind Sql Injection Vulnerability ============================================================== .:. Author : AtT4CKxT3rR0r1ST [email protected] .:. Team : Sec Attack Team .:. Home : www.sec-attack.com/vb .:. Script : Open Bulletin Board .:. Bug Type : Blind Sql Injection ....
CVE-2009-3529
The CVE-2009-3529 entry concerns RadScripts RadBids Gold 4. Vulnerability : SQL injection in index.php triggered by the fid parameter in a view_forum action, enabling remote attackers to execute arbitrary SQL commands. This is a different vector than CVE-2005-1074. Impact : Partial confidentialit...
Sql injection
Multiple SQL injection vulnerabilities in Kasseler CMS 1.1.0 and 1.2.0 allow remote attackers to execute arbitrary SQL commands via 1 the nid parameter to index.php in a View action to the News module; 2 the vid parameter to index.php in a Result action to the Voting module; 3 the fid parameter t...
CVE-2008-2691
SQL injection vulnerability in read.asp in JiRo's FAQ Manager eXperience 1.0 allows remote attackers to execute arbitrary SQL commands via the fID parameter...
Sql injection
SQL injection vulnerability in members.php in YABSoft Mega File Hosting Script aka MFH or MFHS 1.2 allows remote authenticated users to execute arbitrary SQL commands via the fid parameter...
CVE-2008-2521
SQL injection vulnerability in members.php in YABSoft Mega File Hosting Script aka MFH or MFHS 1.2 allows remote authenticated users to execute arbitrary SQL commands via the fid parameter...
Sql injection
SQL injection vulnerability in 1 Puarcade.php and 2 PUarcade.html.php in Pragmatic Utopia PU Arcade compuarcade 2.0.3, 2.1.2, and 2.1.3 Beta component for Joomla! allows remote attackers to execute arbitrary SQL commands via the fid parameter to index.php...
CVE-2007-6663
SQL injection vulnerability in 1 Puarcade.php and 2 PUarcade.html.php in Pragmatic Utopia PU Arcade compuarcade 2.0.3, 2.1.2, and 2.1.3 Beta component for Joomla! allows remote attackers to execute arbitrary SQL commands via the fid parameter to index.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in links.php in Beehive Forum 0.7.1 allow remote attackers to inject arbitrary web script or HTML via the 1 viewmode, 2 fid, and 3 sortdir parameters, different vectors than CVE-2005-4460...
CVE-2006-6115
SQL injection vulnerability in index.asp in fipsCMS 4.5 and earlier allows remote attackers to execute arbitrary SQL commands via the fid parameter...