EUVD-2009-0726

Malware in sbrugna...

EUVD-2009-0730

Malware in sbrugna...

Joomla Component com_gigcal SQL Injection (CVE-2009-0726)

An SQL injection vulnerability has been reported in Gigcalendar Com Gigcalendar. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

Joomla Component com_gigcal (gigcal_gigs_id) 1.0 - SQL Injection

No description provided by source. Joomla Component comgigcalgigcalgigsid SQL-injection Author : boom3rang Greetz : H!tm@N, KHG, chs, redc00de, pr0xy-ki11er, LiTTle-Hack3r, L1RIDON1. Vulnerability : SQL injection Google Dork : inurl:comgigcal -------------------------------------------------- !...

Joomla! and Mambo gigCalendar Component 1.0 'banddetails.php' SQL Injection Vulnerability

No description provided by source. !/usr/bin/env python coding: utf-8 from pocsuite.net import req from pocsuite.poc import POCBase, Output from pocsuite.utils import register import re class TestPOCPOCBase: vulID = '86077' ssvid version = '1.0' author = 'kikay' vulDate = '2009-02-24' createDate ...

Joomla! and Mambo gigCalendar Component SQL Injection Vulnerability

The gigCalendar component for Joomla! and Mambo is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit...

Joomla! and Mambo gigCalendar Component SQLi Vulnerability - Active Check

The gigCalendar component for Joomla! and Mambo is prone to an SQL injection SQLi vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced...

CVE-2009-0730

Multiple SQL injection vulnerabilities in the GigCalendar comgigcal component 1.0 for Mambo and Joomla!, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via 1 the gigcal venuesid parameter in a details action to index.php, which is not properly handled by...

Sql injection

SQL injection vulnerability in the GigCalendar comgigcal component 1.0 for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the gigcalgigsid parameter in a details action to index.php...

CVE-2009-0726

SQL injection vulnerability in the GigCalendar comgigcal component 1.0 for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the gigcalgigsid parameter in a details action to index.php...

Sql injection

Multiple SQL injection vulnerabilities in the GigCalendar comgigcal component 1.0 for Mambo and Joomla!, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via 1 the gigcal venuesid parameter in a details action to index.php, which is not properly handled by...

CVE-2009-0726

The connected data confirms a SQL injection in Joomla/Mambo GigCalendar (com_gigcal) 1.0 via the gigcal_gigs_id parameter in the details action of index.php. Specifically, when magic_quotes_gpc is disabled, an unauthenticated remote attacker can manipulate database queries through gigdetails.php ...

CVE-2009-0730

Multiple SQL injection vulnerabilities in the GigCalendar comgigcal component 1.0 for Mambo and Joomla!, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via 1 the gigcal venuesid parameter in a details action to index.php, which is not properly handled by...

CVE-2009-0726

SQL injection vulnerability in the GigCalendar comgigcal component 1.0 for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the gigcalgigsid parameter in a details action to index.php...

CVE-2009-0730

The CVE-2009-0730 entry concerns the GigCalendar (com_gigcal) 1.0 component for Mambo/Joomla! with SQL injection vulnerabilities when magic_quotes_gpc is disabled. Concrete details from connected sources: two injection vectors in index.php details actions using parameters gigcal_venues_id and gig...

Joomla gigCalendar 1.0 SQL Injection index.php

Salvatore "drosophila" Fresta Application: gigCalendar Joomla Component 1.0 http://joomlacode.org/gf/project/gigcalendar/ Version: gigCalendar 1.0 Bug: SQL Injection Exploitation: Remote Dork: inurl:"index.php?option=comgigcal" Date: 21 Feb 2009 Discovered by:Salvatore "drosophila" Fresta Author:...

Joomla gigCalender 1.0 SQL Injection gigcal_venues_id

Salvatore "drosophila" Fresta Application: gigCalendar Joomla Component 1.0 http://joomlacode.org/gf/project/gigcalendar/ Version: gigCalendar 1.0 Bug: SQL Injection Exploitation: Remote Dork: inurl:"index.php?option=comgigcal" Date: 21 Feb 2009 Discovered by:Salvatore "drosophila" Fresta Author:...

Joomla! Mambo Component gigCalendar 1.0 - banddetails.php SQL Injection

Joomla! Mambo Component gigCalendar 1.0 - banddetails.php SQL Injection source: https://www.securityfocus.com/bid/33859/info The gigCalendar component for Joomla! and Mambo is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in a...

gigCalendar Joomla Component 1.0 SQL Injection

Salvatore "drosophila" Fresta Application: gigCalendar Joomla Component 1.0 http://joomlacode.org/gf/project/gigcalendar/ Version: gigCalendar 1.0 Bug: SQL Injection Exploitation: Remote Dork: inurl:"index.php?option=comgigcal" Date: 21 Feb 2009 Discovered by:Salvatore "drosophila" Fresta Author:...

Joomla! / Mambo Component gigCalendar 1.0 - 'banddetails.php' SQL Injection

source: https://www.securityfocus.com/bid/33859/info The gigCalendar component for Joomla! and Mambo is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise...