15 matches found
EUVD-2006-6759
Malware in sbrugna...
EUVD-2006-6760
Malware in sbrugna...
Future Internet index.cfm categoryId Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/21727/info Future Internet is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An attacker could...
Future Internet index.cfm Multiple Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/21727/info Future Internet is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An attacker could...
NSF Awards $15m for New Secure Internet Architecture
The National Science Foundation NSF is awarding $15 million in grants for the development, deployment and testing of future Internet architectures that are designed to enhance security, respond to emerging service challenges, and increase scalability. In 2010, the NSF Directorate for Computer and...
CVE-2006-6777
Cross-site scripting XSS vulnerability in index.cfm in Future Internet allows remote attackers to inject arbitrary web script or HTML via the categoryId parameter in a Portal.ShowPage action...
CVE-2006-6776
Multiple SQL injection vulnerabilities in Future Internet allow remote attackers to execute arbitrary SQL commands via the 1 newsId or 2 categoryid parameter in a Portal.Showpage action in index.cfm, or 3 the langId parameter in index.cfm...
CVE-2006-6776
Multiple SQL injection vulnerabilities in Future Internet allow remote attackers to execute arbitrary SQL commands via the 1 newsId or 2 categoryid parameter in a Portal.Showpage action in index.cfm, or 3 the langId parameter in index.cfm...
CVE-2006-6777
CVE-2006-6777 is a Cross‑site Scripting (XSS) vulnerability affecting the Future Internet index.cfm page. The issue arises from manipulating the categoryId parameter in a Portal.ShowPage action, allowing remote attackers to inject arbitrary web script or HTML. The published metric indicates a CVS...
CVE-2006-6776
CVE-2006-6776 involves multiple SQL injection vulnerabilities in the Future Internet application. According to NVD/CVE records, remote attackers can execute arbitrary SQL commands via parameters in index.cfm: (1) newsId, (2) categoryid for Portal.Showpage, or (3) langId. The provided metrics indi...
CVE-2006-6777
Cross-site scripting XSS vulnerability in index.cfm in Future Internet allows remote attackers to inject arbitrary web script or HTML via the categoryId parameter in a Portal.ShowPage action...
fi-xsssql.txt
Hello Vulnerable : Future Internet web : http://www.future-internet.com SQL Injection : http://www.example.com/pathofscript/index.cfm?fuseaction=Portal.Showpage&categoryid=311&newsId=SQL http://www.example.com/pathofscript/index.cfm?fuseaction=Portal.Showpage&categoryid=SQL...
Future Internet - index.cfm Multiple SQL Injections
Future Internet - index.cfm Multiple SQL Injections source: https://www.securityfocus.com/bid/21727/info Future Internet is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. A...
Future Internet - 'index.cfm?categoryId' Cross-Site Scripting
source: https://www.securityfocus.com/bid/21727/info Future Internet is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An attacker could exploit these issues to steal...
Future Internet - 'index.cfm' Multiple SQL Injections
source: https://www.securityfocus.com/bid/21727/info Future Internet is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An attacker could exploit these issues to steal...