Geodesic Solutions Multiple Products index.php b Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/19093/info GeodesicSolutions products are prone to multiple SQL-injection vulnerabilities because the applications fail to properly sanitize user-supplied input before using it in an SQL query. A successful attack could...

CVE-2014-3871

Multiple SQL injection vulnerabilities in register.php in Geodesic Solutions GeoCore MAX 7.3.3 formerly GeoClassifieds and GeoAuctions allow remote attackers to execute arbitrary SQL commands via the 1 cpassword or 2 cusername parameter. NOTE: the b parameter to index.php vector is already covere...

CVE-2014-3871

CVE-2014-3871 documents multiple SQL injection vulnerabilities in Geodesic Solutions GeoCore MAX 7.3.3 (Ge oAuctions/GeoClassifieds) where remote attackers can trigger SQL commands via the register.php parameters (1) c[password] and (2) c[username]. The entry notes that the b parameter in index.p...

CVE-2014-3871

Multiple SQL injection vulnerabilities in register.php in Geodesic Solutions GeoCore MAX 7.3.3 formerly GeoClassifieds and GeoAuctions allow remote attackers to execute arbitrary SQL commands via the 1 cpassword or 2 cusername parameter. NOTE: the b parameter to index.php vector is already covere...

GeoCore MAX DB Ver. 7.3.3 - Time-Based Blind Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: GeoCore MAX DB Ver. 7.3.3 - Time-Based Blind Injection Official site: http://geodesicsolutions.com Risk Level: High Vendor : http://geodesicsolutions.com Exploit Author: Esac Homepage author : www.iss4m.ma Last Checked: 25/04/20...

GeoCore MAX DB Ver. 7.3.3 - Blind SQL Injection

Exploit Title: GeoCore MAX DB Ver. 7.3.3 - Time-Based Blind Injection Official site: http://geodesicsolutions.com Risk Level: High Vendor : http://geodesicsolutions.com Exploit Author: Esac Homepage author : www.iss4m.ma Last Checked: 25/04/2014 +----------+ | OVERVIEW | +----------+ GeoCore is t...

GeoCore MAX DB 7.3.3 Blind SQL Injection Vulnerability

GeoCore MAX DB version 7.3.3 suffers from a time-based remote blind SQL injection vulnerability. Exploit Title: GeoCore MAX DB Ver. 7.3.3 - Time-Based Blind Injection Official site: http://geodesicsolutions.com Risk Level: High Demo : http://geodesicsolutions.com/demo/ Exploit Author: Esac Homepa...

GeoClassifieds Lite 2.0.x SQL Injection / Cross Site Scripting

--------------------------------------------------------------------- + Title : GeoClassifieds Lite Multiple vulnerabilities + Affected Version : v2.0.1 & V2.0.3.1 & V2.0.3.2 &V2.0.4 + Software Link : http://geodesicsolutions.com/ + Tested on : Windows 7 + Date : 25/08/2011 + Dork : "inurl:/admin...

Geodesic Solutions (Multiple Products) - 'index.php?b' SQL Injection

source: https://www.securityfocus.com/bid/19093/info GeodesicSolutions products are prone to multiple SQL-injection vulnerabilities because the applications fail to properly sanitize user-supplied input before using it in an SQL query. A successful attack could allow an attacker to compromise the...