6 matches found
CVE-2003-1350
List Site Pro 2.0 allows remote attackers to hijack user accounts by inserting a "|" pipe, which is used as a field delimiter, into the bannerurl field...
CVE-2003-1350
CVE-2003-1350 affects List Site Pro 2.0. A remote attacker can hijack user accounts by inserting a pipe character into the bannerurl field, exploiting it as a delimiter. The available descriptions state this vulnerability condition but do not provide specifics on affected versions beyond List Sit...
CVE-2003-1350
List Site Pro 2.0 allows remote attackers to hijack user accounts by inserting a "|" pipe, which is used as a field delimiter, into the bannerurl field...
List Site Pro v2 user account Hijacking vulnerablity
List Site Pro v2 user account Hijacking vulnerablity Severity:Low homepage:http://www.listsitepro.com It is possible to take over another user account by signing up and using | in one of the required feilds. List Site Pro uses '|' to delimit the database but the form input is not checked and...
List Site Pro 2.0 - User Database Delimiter Injection
source: https://www.securityfocus.com/bid/6685/info List Site PRO is a top site ranking system that counts hits from member sites and then ranks them according to the number of hits. A problem has been reported for List Site PRO that would allow an attacker to inject arbitrary values via html inp...
List Site Pro 2.0 - User Database Delimiter Injection
List Site Pro 2.0 - User Database Delimiter Injection source: https://www.securityfocus.com/bid/6685/info List Site PRO is a top site ranking system that counts hits from member sites and then ranks them according to the number of hits. A problem has been reported for List Site PRO that would all...