45 matches found
EUVD-2005-1637
Malware in sbrugna...
EUVD-2005-1482
Malware in sbrugna...
EUVD-2005-1636
Malware in sbrugna...
EUVD-2005-1635
Malware in sbrugna...
JGS-Portal 3.0.1/3.0.2 jgs_portal_viewsgraf.php tag Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/13650/info JGS-Portal is prone to multiple cross-site scripting and SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of...
JGS-Portal 3.0.1/3.0.2 jgs_portal_themengraf.php year Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/13650/info JGS-Portal is prone to multiple cross-site scripting and SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of...
JGS-Portal 3.0.1/3.0.2 jgs_portal.php anzahl_beitraege Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/13650/info JGS-Portal is prone to multiple cross-site scripting and SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of...
JGS-Portal 3.0.1 ID Variable SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13451/info JGS-Portal is prone to an SQL injection. This issue may potentially be exploited to compromise the software or gain unauthorized access to the database. The consequences of exploitation will depend on the natur...
JGS-Portal 3.0.1/3.0.2 jgs_portal_beitraggraf.php year Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/13650/info JGS-Portal is prone to multiple cross-site scripting and SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of...
JGS-Portal 3.0.1/3.0.2 jgs_portal_mitgraf.php year Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/13650/info JGS-Portal is prone to multiple cross-site scripting and SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of...
JGS-Portal 3.0.1/3.0.2 jgs_portal_sponsor.php id Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/13650/info JGS-Portal is prone to multiple cross-site scripting and SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of...
JGS-Portal 3.0.1/3.0.2 jgs_portal_statistik.php year Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/13650/info JGS-Portal is prone to multiple cross-site scripting and SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of...
JGS-Portal Multiple XSS and SQL injection Vulnerabilities
The remote host is running the JGS-Portal, a web portal written in PHP. The remote version of this software contains an input validation flaw leading multiple SQL injection and XSS vulnerabilities. An attacker may exploit these flaws to execute arbirtrary SQL commands against the remote database...
JGS-XA JGS-Portal <= 3.0.2 Multiple XSS and SQLi Vulnerabilities - Active Check
The remote version of JGS-Portal contains an input validation flaw leading multiple SQL injection and XSS vulnerabilities. SPDX-FileCopyrightText: 2005 Josh Zlatin-Amishav Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
JGSvulns.txt
SePro Bugtraq WBB Portal - JGS-Portal = 3.0.2 - Multiple Vulnerabilities 09.05.05 Vendor: JGS-XA URL: http://www.jgs-xa.de/ Version: = 3.0.2 Type: SQL-Injections, XSS and Full Path Disclosures Discovered by deluxe89 and the Security-Project Team Description: ------------------------- The JGS-Port...
CVE-2005-1634
The data confirms concrete flaws in JGS-XA/JGS-Portal up to version 3.0.2: multiple XSS and SQL injection vectors enabled via parameters in jgs_portal.php and related scripts (anzahl_beitraege, year in statistik/beitraggraf/themes, tag, id in sponsor) or even the Accept-Language header to jgs_por...
CVE-2005-1635
JGS-XA JGS-Portal 3.0.2 and earlier allows remote attackers to obtain the full server path via direct requests to 1 jgsportalref.php, 2 jgsportalland.php, 3 jgsportallog.php, 4 jgsportalglobalsponsor.php, 5 jgsportalglobal.php, 6 jgsportalsystem.php, 7 jgsportalviews.php; or multiple files in the...
CVE-2005-1634
Multiple cross-site scripting XSS vulnerabilities in JGS-XA JGS-Portal 3.0.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 anzahlbeitraege parameter to jgsportal.php, 2 year parameter to jgsportalstatistik.php, 3 year parameter to jgsportalbeitraggraf.php, 4...
CVE-2005-1635
JGS-XA JGS-Portal 3.0.2 and earlier allows remote attackers to obtain the full server path via direct requests to 1 jgsportalref.php, 2 jgsportalland.php, 3 jgsportallog.php, 4 jgsportalglobalsponsor.php, 5 jgsportalglobal.php, 6 jgsportalsystem.php, 7 jgsportalviews.php; or multiple files in the...
CVE-2005-1635
The provided Connected documents confirm that JGS-XA JGS-Portal