CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

No description provided by source. source: http://www.securityfocus.com/bid/15812/info LocazoList Classifieds is prone to an input validation vulnerability that allows cross-site scripting and SQL injection attacks. An attacker may leverage this issue to have arbitrary script code executed in the...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•10 views

LocazoList <= 2.01a beta5 (subcatID) Remote SQL Injection Vulnerability

No description provided by source...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•12 views

LocazoList Classifieds 1.0 Viewmsg.ASP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18254/info LocazoList Classifieds is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploi...

7.1AI score

Exploits0

Prion•added 2007/01/09 11:28 a.m.•12 views

Sql injection

SQL injection vulnerability in main.asp in LocazoList 2.01a beta5 and earlier allows remote attackers to execute arbitrary SQL commands via the subcatID parameter...

7.5CVSS9AI score0.01029EPSS

Exploits0References4Affected Software1

NVD•added 2007/01/09 11:28 a.m.•12 views

CVE-2007-0129

SQL injection vulnerability in main.asp in LocazoList 2.01a beta5 and earlier allows remote attackers to execute arbitrary SQL commands via the subcatID parameter...

7.5CVSS8.4AI score0.01029EPSS

Exploits0References4

CVE•added 2007/01/09 11:0 a.m.•39 views

CVE-2007-0129

CVE-2007-0129 describes an SQL injection in LocazoList (main.asp) affecting version 2.01a beta5 and earlier. The vulnerability is triggered via the subcatID parameter, enabling remote attackers to execute arbitrary SQL commands. Exploitation is network‑based with low complexity and no authenticat...

7.5CVSS8.4AI score0.01029EPSS

Exploits0References4Affected Software1

Cvelist•added 2007/01/09 11:0 a.m.•40 views

CVE-2007-0129

SQL injection vulnerability in main.asp in LocazoList 2.01a beta5 and earlier allows remote attackers to execute arbitrary SQL commands via the subcatID parameter...

8.4AI score0.01029EPSS

Exploits0References4

seebug.org•added 2007/01/04 12:0 a.m.•18 views

LocazoList <= 2.01a beta5 (subcatID) Remote SQL Injection Vulnerability

No description provided by source. Title : LocazoList = v2.01a beta5 subcatID Remote SQL Injection Vulnerability Author : ajann Contact : : S.Page : http://www.locazo.net:81 Dork : "Powered by Locazolist Copyright ? 2006" $$ : $100 SQL---------------------------------------------------------...

7.1AI score

Exploits0

Exploit DB•added 2007/01/03 12:0 a.m.•39 views

LocazoList 2.01a beta5 - 'subcatID' SQL Injection

Title : LocazoList = v2.01a beta5 subcatID Remote SQL Injection Vulnerability Author : ajann Contact : : S.Page : http://www.locazo.net:81 Dork : "Powered by Locazolist Copyright © 2006" $$ : $100 SQL---------------------------------------------------------...

7.4AI score

Exploits0

exploitpack•added 2007/01/03 12:0 a.m.•13 views

LocazoList 2.01a beta5 - subcatID SQL Injection

LocazoList 2.01a beta5 - subcatID SQL Injection Title : LocazoList = v2.01a beta5 subcatID Remote SQL Injection Vulnerability Author : ajann Contact : : S.Page : http://www.locazo.net:81 Dork : "Powered by Locazolist Copyright © 2006" $$ : $100...

8.6AI score

Exploits0

0day.today•added 2007/01/03 12:0 a.m.•67 views

LocazoList <= 2.01a beta5 (subcatID) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ======================================================================= LocazoList = 2.01a beta5 subcatID Remote SQL Injection Vulnerability ======================================================================= Title : LocazoList = v2.01...

7.1AI score

Exploits0

NVD•added 2006/06/06 8:6 p.m.•13 views

CVE-2006-2858

SQL injection vulnerability in viewmsg.asp in LocazoList Classifieds 1.05e allows remote attackers to execute arbitrary SQL commands via the msgid parameter...

7.5CVSS8.4AI score0.01791EPSS

Exploits1References8

Prion•added 2006/06/06 8:6 p.m.•14 views

Sql injection

SQL injection vulnerability in viewmsg.asp in LocazoList Classifieds 1.05e allows remote attackers to execute arbitrary SQL commands via the msgid parameter...

7.5CVSS9.1AI score0.01791EPSS

Exploits1References8Affected Software1

CVE•added 2006/06/06 8:3 p.m.•36 views

CVE-2006-2858

The vulnerability CVE-2006-2858 affects LocazoList Classifieds 1.05e, with the issue located in viewmsg.asp. The underlying flaw is an SQL injection via the msgid parameter that allows remote attackers to execute arbitrary SQL commands. The available sources confirm the presence of this SQL injec...

7.5CVSS8.4AI score0.01791EPSS

Exploits1References8Affected Software1

Cvelist•added 2006/06/06 8:3 p.m.•14 views

CVE-2006-2858

SQL injection vulnerability in viewmsg.asp in LocazoList Classifieds 1.05e allows remote attackers to execute arbitrary SQL commands via the msgid parameter...

8.4AI score0.01791EPSS

Exploits1References8

Packet Storm•added 2006/06/05 12:0 a.m.•21 views

locazolist.txt

Title : LocazoList Classifieds = v1.05eviewmsg.asp Remote SQL Injection Vulnerability Author : ajann Vulnerability; $$$ http://target/path/viewmsg.asp?msgid= SQL TEXT $$$ Example:...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by