EUVD-2006-3816

Malware in sbrugna...

GeoAuctions 1.0.6 Enterprise index.php d Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/19093/info GeodesicSolutions products are prone to multiple SQL-injection vulnerabilities because the applications fail to properly sanitize user-supplied input before using it in an SQL query. A successful attack could...

CVE-2014-3871

CVE-2014-3871 documents multiple SQL injection vulnerabilities in Geodesic Solutions GeoCore MAX 7.3.3 (Ge oAuctions/GeoClassifieds) where remote attackers can trigger SQL commands via the register.php parameters (1) c[password] and (2) c[username]. The entry notes that the b parameter in index.p...

CVE-2006-3822

SQL injection vulnerability in index.php in GeodesicSolutions GeoAuctions Enterprise 1.0.6 allows remote attackers to execute arbitrary SQL commands via the d parameter...

CVE-2006-3823

SQL injection vulnerability in index.php in GeodesicSolutions 1 GeoAuctions Premier 2.0.3 and 2 GeoClassifieds Basic 2.0.3 allows remote attackers to execute arbitrary SQL commands via the b parameter...

CVE-2006-3823

CVE-2006-3823 describes an SQL injection in GeodesicSolutions’ index.php affecting two products: GeoAuctions Premier 2.0.3 and GeoClassifieds Basic 2.0.3. The vulnerability occurs when exploiting the b parameter in index.php, allowing remote attackers to execute arbitrary SQL commands. According ...

CVE-2006-3822

GeodesicSolutions GeoAuctions Enterprise 1.0.6 is affected by an SQL injection in index.php via the d parameter, enabling remote execution of arbitrary SQL commands. No exploitation details or fixes are provided in the connected documents beyond this description. Mitigation with a patch/update fr...

CVE-2006-3822

SQL injection vulnerability in index.php in GeodesicSolutions GeoAuctions Enterprise 1.0.6 allows remote attackers to execute arbitrary SQL commands via the d parameter...

GeoAuctions 1.0.6 Enterprise - 'index.php?d' SQL Injection

source: https://www.securityfocus.com/bid/19093/info GeodesicSolutions products are prone to multiple SQL-injection vulnerabilities because the applications fail to properly sanitize user-supplied input before using it in an SQL query. A successful attack could allow an attacker to compromise the...

geoauctionsSQL.txt

------=Part10286255599.1153211407989 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline Be kind to publish it quickly, Regards, Angel Team NewAngels Advisory 12 GeoAuctions Enterprise & Others - Blind SQL Injection Vulnerability...

GeoAuctions 1.0.6 Enterprise - index.php?d SQL Injection

GeoAuctions 1.0.6 Enterprise - index.php?d SQL Injection source: https://www.securityfocus.com/bid/19093/info GeodesicSolutions products are prone to multiple SQL-injection vulnerabilities because the applications fail to properly sanitize user-supplied input before using it in an SQL query. A...