Cacti 'link.php' Cross-Site Scripting Vulnerability

Cacti is a set of open source network traffic monitoring and analysis tools from the Cacti team. The tool through snmpget to get the data , using RRDtool drawing graphs to analyze , and provide data and user management features . A cross-site scripting vulnerability exists in the link.php file in...

Cacti -- Cross-site scripting (XSS) vulnerability in link.php

kimiizhang reports: Cross-site scripting XSS vulnerability in link.php in Cacti 1.1.12 allows remote anonymous users to inject arbitrary web script or HTML via the id parameter...

moviesmobile.net vulnerability

Vulnerable URL: http://moviesmobile.net/common/link.php?link=http://xssposed.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability status:| Publicly disclosed Alexa Rank| 47023 Google Pagerank| 2 VIP website status:| Yes Check moviesmobile.net SSL...

fewiki.jp vulnerability

Vulnerable URL: http://fewiki.jp/link.php?http://xssposed.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability status:| Publicly disclosed Alexa Rank| 320277 Google Pagerank| 2 VIP website status:| No Check fewiki.jp SSL connection:| Grade: F...

api.yuntj.com vulnerability

Vulnerable URL: http://api.yuntj.com/link.php?url=https://www.xssposed.org/ Details: Description| Value ---|--- Patched:| Yes, at 14.03.2016 Latest check for patch:| 14.03.2016 06:03 GMT Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated Google Pagerank| 2 VIP website...

easethink 1.4 /link.php SQL注入漏洞

No description provided by source...

易 想 购物 link.php sql injection vulnerability-vulnerability warning-the black bar safety net

Easy to want to buy the system link. php within the page code if$REQUEST'act'=='go' //link tag go $url = $REQUEST'url'; //directly fetch the url VALUE into the sql query statement. $linkitem = $GLOBALS'db'-getRowCached"select from ". DBPREFIX."link where url = '".$ url."' or url = 'http://".$...

Sql injection

SQL injection vulnerability in admin/campaign-zone-link.php in OpenX 2.8.10 before revision 81823 allows remote attackers to execute arbitrary SQL commands via the ids parameter in a link action...

CVE-2012-4990

CVE-2012-4990 : OpenX 2.8.10 (and earlier) is vulnerable to SQL injection via the ids[] parameter in admin/campaign-zone-link.php. The vulnerability allows remote attackers to manipulate SQL queries, with PoCs showing crafted ids[] input and an exploit requiring the attacker to be registered with...

Tekno.Portal v0.1b 'link.php' Blind SQL Injection Vulnerability

====================================================== Tekno.Portal v0.1b - Blind SQL Injection in "link.php" ====================================================== Exploit Title: Tekno.Portal v0.1b 'link.php' Blind SQL Injection Vulnerability Date: 08-01-2012 Author: Socket0x03 Alvaro J. Gene...

Tekno.Portal 0.1b Blind SQL Injection

====================================================== Tekno.Portal v0.1b - Blind SQL Injection in "link.php" ====================================================== Exploit Title: Tekno.Portal v0.1b 'link.php' Blind SQL Injection Vulnerability Date: 08-01-2012 Author: Socket0x03 Alvaro J. Gene...

tekno.Portal 0.1b - 'link.php' SQL Injection

source: https://www.securityfocus.com/bid/54786/info tekno.Portal is prone to an SQL-injection vulnerability. A successful exploit may allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database. tekno.Portal 0.1b is...

CVE-2008-4353

CVE-2008-4353 describes an SQL injection vulnerability in the Linkarity product, specifically in the link.php script where the cat_id parameter is unsafely used in SQL queries. The issue allows remote attackers to execute arbitrary SQL commands against the vulnerable system. The description notes...

linkarity-sql.txt

================================================================================ Linkarity link.php Remote SQL Injection Vulnerability ================================================================================ Discovered By: Egypt Coder home : WWW.Sec-Area.com Mail: [email protected]...

Links Pile - 'link.php' SQL Injection

source: https://www.securityfocus.com/bid/29223/info Links Pile is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

Pligg CMS 9.9.0 - Cross-Site Scripting Local File Inclusion SQL Injection

Pligg CMS 9.9.0 - Cross-Site Scripting Local File Inclusion SQL Injection GulfTech Security Research July 30, 2008 Vendor : Pligg LLC URL : http://www.pligg.com/ Version : Pligg alertdocument.cookie; The above example link would display the end users cookie to them. Of course this can also be use...

Linkspile - cat_id SQL Injection

Linkspile - catid SQL Injection Remote SQL Injection Vulnerabilities Linkspile link.php Author : HaCkeREgY C0NTACT : [email protected] H^OME : www.PAL-HaCkeR.com & ATSDP.COM Script Name : Linkspile Download : http://www.linkspile.com Price : $399.00 ======= Buy iT :...

Sql injection

SQL injection vulnerability in suggest-link.php in eSyndiCat Link Exchange Script allows remote attackers to execute arbitrary SQL commands via the id parameter...

CVE-2006-4503

NX5Linx/NX5Linkx 1.0 is affected by CVE-2006-4503 due to a directory traversal in link.php where the logo parameter is not sanitized, allowing an attacker to read arbitrary files on the server. The vulnerability is confirmed in publicly shared advisories for NX5Linkx (eVuln EV0138) which lists NX...

Arab Portal 2.0 - 'Link.php' SQL Injection

source: https://www.securityfocus.com/bid/15820/info Arab Portal is prone to multiple SQL injection vulnerabilities. These are due to a lack of proper sanitization of user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise of the application,...