9 matches found
PHP JackKnife 2.21 (PHPJK) G_Display.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/24253/info PHP JackKnife is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues. Exploiting these issues could allow an attacker to steal cookie-based authentication...
PHP JackKnife 2.21 (PHPJK) G_Display.php iCategoryUnq Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/24253/info PHP JackKnife is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues. Exploiting these issues could allow an attacker to steal cookie-based authentication...
CVE-2007-3000
Multiple SQL injection vulnerabilities in PHP JackKnife PHPJK allow remote attackers to execute arbitrary SQL commands via 1 the iCategoryUnq parameter to GDisplay.php or 2 the iSearchID parameter to Search/DisplayResults.php...
Design/Logic Flaw
PHP JackKnife PHPJK allows remote attackers to obtain sensitive information via 1 a request to index.php with an invalid value of the iParentUnq parameter, or a request to GDisplay.php with an invalid 2 iCategoryUnq or 3 sSort array parameter, which reveals the path in various error messages...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in PHP JackKnife PHPJK allow remote attackers to inject arbitrary web script or HTML via 1 the sUName parameter to UserArea/Authenticate.php, 2 the sAccountUnq parameter to UserArea/NewAccounts/index.php, or the 3 iCategoryUnq, 4 iDBLoc, 5...
Sql injection
Multiple SQL injection vulnerabilities in PHP JackKnife PHPJK allow remote attackers to execute arbitrary SQL commands via 1 the iCategoryUnq parameter to GDisplay.php or 2 the iSearchID parameter to Search/DisplayResults.php...
CVE-2007-3001
Multiple cross-site scripting XSS vulnerabilities in PHP JackKnife PHPJK allow remote attackers to inject arbitrary web script or HTML via 1 the sUName parameter to UserArea/Authenticate.php, 2 the sAccountUnq parameter to UserArea/NewAccounts/index.php, or the 3 iCategoryUnq, 4 iDBLoc, 5...
PHP JackKnife 2.21 - (PHPJK) G_Display.php Multiple Cross-Site Scripting Vulnerabilities
PHP JackKnife 2.21 - PHPJK GDisplay.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/24253/info PHP JackKnife is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues. Exploiting these issues could...
PHP JackKnife 2.21 - '(PHPJK) G_Display.php?iCategoryUnq' SQL Injection
source: https://www.securityfocus.com/bid/24253/info PHP JackKnife is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the...