4938 matches found
Soft4e ECW-Shop 6.0.2 - 'index.php' SQL Injection
source: https://www.securityfocus.com/bid/14576/info ECW Shop is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. The consequences of this attack may vary depending on the type of...
MyBulletinBoard (MyBB) RC4 - action SQL Injection
MyBulletinBoard MyBB RC4 - action SQL Injection source: https://www.securityfocus.com/bid/14553/info MyBulletinBoard is prone to multiple SQL injection vulnerability. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries...
MyBulletinBoard (MyBB) RC4 - 'action' SQL Injection
source: https://www.securityfocus.com/bid/14553/info MyBulletinBoard is prone to multiple SQL injection vulnerability. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation could result in a compromise...
PHP Lite Calendar Express 2.2 - 'Subscribe.php?cid' SQL Injection
source: https://www.securityfocus.com/bid/14504/info Calendar Express is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker to compromise the applicatio...
Jax PHP Scripts 1.01.342.143.31 - jax_calendar.php Multiple Cross-Site Scripting Vulnerabilities
Jax PHP Scripts 1.01.342.143.31 - jaxcalendar.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/14481/info Jax PHP Scripts are affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure in the applications to properly...
Jax PHP Scripts 1.01.342.143.31 - jax_linklists.php Multiple Cross-Site Scripting Vulnerabilities
Jax PHP Scripts 1.01.342.143.31 - jaxlinklists.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/14481/info Jax PHP Scripts are affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure in the applications to properly...
CVE-2005-2419
B-FOCuS Router 312+ allows remote attackers to bypass authentication and gain unauthorized access via a direct request to firmwarecfg...
CVE-2005-2419
The CVE-2005-2419 entry concerns the B-FOCuS Router 312+ where remote attackers can bypass authentication by issuing a direct request to firmwarecfg. The available documents confirm the affected device and the core flaw (authentication bypass via firmwarecfg access), but they provide no precise r...
CVE-2005-2419
B-FOCuS Router 312+ allows remote attackers to bypass authentication and gain unauthorized access via a direct request to firmwarecfg...
Naxtor Shopping Cart 1.0 - 'Shop_Display_Products.php' SQL Injection
source: https://www.securityfocus.com/bid/14456/info Naxtor Shopping Cart is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise of...
PHPFreeNews 1.x - Admin Login SQL Injection
PHPFreeNews 1.x - Admin Login SQL Injection source: https://www.securityfocus.com/bid/14442/info PHPFreeNews is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...
ECIrouter.txt
Title: ECI router verification bypass and DoS Date: 24/07/2005 Impact: Log in verification bypass Vendors Status: Not contacted they were mean to me Overview: The B-FOCuS Router 312+ provides users with a reliable and secured ADSL2+ connection to the Internet. The 312+ has a single Ethernet port...
BMForum 3.0 - topic.php Cross-Site Scripting
BMForum 3.0 - topic.php Cross-Site Scripting source: https://www.securityfocus.com/bid/14396/info BMForum is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these...
ECI Telecom B-FOCuS Router 312+ - Unauthorized Access
ECI Telecom B-FOCuS Router 312+ - Unauthorized Access source: https://www.securityfocus.com/bid/14364/info B-FOCuS Router 312+ is affected by a vulnerability that can allow unauthorized attackers to gain access to an affected device. An attacker can disclose the administrator password through the...
ECI router login bypass
Title: ECI router verification bypass and DoS Date: 24/07/2005 Impact: Log in verification bypass Vendors Status: Not contacted they were mean to me Overview: The B-FOCuS Router 312+ provides users with a reliable and secured ADSL2+ connection to the Internet. The 312+ has a single Ethernet port...
ECI Telecom B-FOCuS Router 312+ - Unauthorized Access
source: https://www.securityfocus.com/bid/14364/info B-FOCuS Router 312+ is affected by a vulnerability that can allow unauthorized attackers to gain access to an affected device. An attacker can disclose the administrator password through the Web interface of the device. This can lead to a...
Contrexx 1.0.4 - Multiple Input Validation Vulnerabilities
Contrexx 1.0.4 - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/14352/info Contrexx is affected by multiple input validation vulnerabilities. These issues can allow an attacker to carry out HTML injection, SQL injection and information disclosure attacks...
Microsoft Internet Explorer 5.0.1 - .JPEG Image Rendering Buffer Overflow
Microsoft Internet Explorer 5.0.1 - .JPEG Image Rendering Buffer Overflow source: https://www.securityfocus.com/bid/14282/info Microsoft Internet Explorer is prone to a buffer overflow vulnerability in the JPEG image rendering library used by the browser. This issue is due to a failure of the...
PPA 0.5.6 - ppa_root_path File Inclusion
PPA 0.5.6 - pparootpath File Inclusion source: https://www.securityfocus.com/bid/14209/info PPA is susceptible to a remote file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitra...
phpAuction 2.5 - Multiple Vulnerabilities
phpAuction 2.5 - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/14184/info PHPAuction is affected by multiple remote vulnerabilities. These issues can allow an attacker to gain unauthorized access to a site and carry out SQL injection and cross-site scripting attacks. PHPAucti...