5 matches found
EUVD-2014-3808
Malware in sbrugna...
CVE-2014-3871
Multiple SQL injection vulnerabilities in register.php in Geodesic Solutions GeoCore MAX 7.3.3 formerly GeoClassifieds and GeoAuctions allow remote attackers to execute arbitrary SQL commands via the 1 cpassword or 2 cusername parameter. NOTE: the b parameter to index.php vector is already covere...
CVE-2014-3871
CVE-2014-3871 documents multiple SQL injection vulnerabilities in Geodesic Solutions GeoCore MAX 7.3.3 (Ge oAuctions/GeoClassifieds) where remote attackers can trigger SQL commands via the register.php parameters (1) c[password] and (2) c[username]. The entry notes that the b parameter in index.p...
CVE-2014-3871
Multiple SQL injection vulnerabilities in register.php in Geodesic Solutions GeoCore MAX 7.3.3 formerly GeoClassifieds and GeoAuctions allow remote attackers to execute arbitrary SQL commands via the 1 cpassword or 2 cusername parameter. NOTE: the b parameter to index.php vector is already covere...
GeoCore MAX DB 7.3.3 Blind SQL Injection Vulnerability
GeoCore MAX DB version 7.3.3 suffers from a time-based remote blind SQL injection vulnerability. Exploit Title: GeoCore MAX DB Ver. 7.3.3 - Time-Based Blind Injection Official site: http://geodesicsolutions.com Risk Level: High Demo : http://geodesicsolutions.com/demo/ Exploit Author: Esac Homepa...