24 matches found
EUVD-2016-1069
Malware in sbrugna...
EUVD-2016-1063
Malware in sbrugna...
EUVD-2016-1064
Malware in sbrugna...
Joomla Huge-IT Portfolio Gallery Plugin 1.0.7 Component - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title Unauthenticated SQL Injection in Huge-IT Catalog v1.0.7 for Joomla Date: 2016-09-16 Exploit Author: Larry W. Cashdollar, @larry0 Vendor Homepage: http://huge-it.com/joomla-catalog/ Software Link: Version: 1.0.7 Tested on: Linux C...
Joomla! Component Huge-IT Portfolio Gallery Plugin 1.0.7 - SQL Injection
Joomla! Component Huge-IT Portfolio Gallery Plugin 1.0.7 - SQL Injection Exploit Title Unauthenticated SQL Injection in Huge-IT Catalog v1.0.7 for Joomla Date: 2016-09-16 Exploit Author: Larry W. Cashdollar, @larry0 Vendor Homepage: http://huge-it.com/joomla-catalog/ Software Link: Version: 1.0.7...
CVE-2016-1000120
SQLi and XSS in Huge IT catalog extension v1.0.4 for Joomla...
Sql injection
SQLi and XSS in Huge IT catalog extension v1.0.4 for Joomla...
CVE-2016-1000120
CVE-2016-1000120 affects Joomla's Huge IT Catalog extension (v1.0.4). The connected sources confirm SQL injection and cross-site scripting vulnerabilities in the catalog component caused by inadequate validation of user-submitted input. Potential impact, as described in CNVD, includes arbitrary s...
CVE-2016-1000120
SQLi and XSS in Huge IT catalog extension v1.0.4 for Joomla...
CVE-2016-1000119
SQLi and XSS in Huge IT catalog extension v1.0.4 for Joomla...
CVE-2016-1000119
SQLi and XSS in Huge IT catalog extension v1.0.4 for Joomla...
CVE-2016-1000119
The CVE-2016-1000119 entry concerns the Huge IT Joomla Catalog Extension 1.0.4 for Joomla. Public details describe two vulnerabilities: a SQL Injection and a Reflected Cross-Site Scripting (XSS). The SQLi occurs in the submissions model (id parameter) and the XSS in the submissions view (message_...
Huge-IT Catalog Extension SQL Injection Vulnerability in Joomla!
Joomla! is an open source content management system CMS developed by the Open Source Matters team in the U.S. Huge-IT Catalog is one of the extensions that showcases products in the most attractive way. A SQL injection vulnerability exists in version 1.0.7 of the Joomla! Huge-IT Catalog extension...
CVE-2016-1000125
Unauthenticated SQL Injection in Huge-IT Catalog v1.0.7 for Joomla...
CVE-2016-1000125
Unauthenticated SQL Injection in Huge-IT Catalog v1.0.7 for Joomla...
Sql injection
Unauthenticated SQL Injection in Huge-IT Catalog v1.0.7 for Joomla...
CVE-2016-1000125
Unauthenticated SQL Injection in Huge-IT Catalog v1.0.7 for Joomla...
CVE-2016-1000125
The CVE-2016-1000125 entry concerns Huge-IT Catalog for Joomla (version 1.0.7). The connected sources provide concrete details: an unauthenticated SQL injection vulnerability in the component’s ajax_url.php logic (load_more_elements_into_catalog) accessible via POST parameters (e.g., catalog_id)....
PT-2016-4517 · Huge It · Huge-It Catalog
Name of the Vulnerable Software and Affected Versions: Huge-IT Catalog version 1.0.7 Description: The issue is related to an unauthenticated SQL Injection. Recommendations: For version 1.0.7, update to a newer version that contains a fix for this issue...
Joomla! Component Catalog 1.0.7 - SQL Injection
Joomla! Component Catalog 1.0.7 - SQL Injection Title: Unauthenticated SQL Injection in Huge-IT Catalog v1.0.7 for Joomla Author: Larry W. Cashdollar, @larry0 Date: 2016-09-16 Download Site: http://huge-it.com/joomla-catalog/ Vendor: huge-it.com Vendor Notified: 2016-09-17 Vendor Contact:...