25 matches found
EUVD-2007-6525
Malware in sbrugna...
EUVD-2007-6526
Malware in sbrugna...
logaholic.com Cross Site Scripting vulnerability OBB-3524232
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
logaholic.com Cross Site Scripting vulnerability OBB-2349054
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Logaholic index.php parameter Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/27003/info Logaholic is prone to multiple input-validation vulnerabilities, including multiple SQL-injection issues, a cross-site scripting issue, and an HTML-injection issue. The issues occur because the application fail...
Logaholic index.php conf Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/27003/info Logaholic is prone to multiple input-validation vulnerabilities, including multiple SQL-injection issues, a cross-site scripting issue, and an HTML-injection issue. The issues occur because the application fail...
Logaholic profiles.php newconfname Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/27003/info Logaholic is prone to multiple input-validation vulnerabilities, including multiple SQL-injection issues, a cross-site scripting issue, and an HTML-injection issue. The issues occur because the application fail...
Logaholic update.php page Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/27003/info Logaholic is prone to multiple input-validation vulnerabilities, including multiple SQL-injection issues, a cross-site scripting issue, and an HTML-injection issue. The issues occur because the application fail...
Sql injection
Multiple SQL injection vulnerabilities in Logaholic before 2.0 RC8 allow remote attackers to execute arbitrary SQL commands via 1 the from parameter to index.php or 2 the page parameter to update.php...
CVE-2007-6560
Multiple cross-site scripting XSS vulnerabilities in Logaholic before 2.0 RC8 allow remote attackers to inject arbitrary web script or HTML via 1 the newconfname parameter to profiles.php or 2 the conf parameter to index.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Logaholic before 2.0 RC8 allow remote attackers to inject arbitrary web script or HTML via 1 the newconfname parameter to profiles.php or 2 the conf parameter to index.php...
CVE-2007-6559
Multiple SQL injection vulnerabilities in Logaholic before 2.0 RC8 allow remote attackers to execute arbitrary SQL commands via 1 the from parameter to index.php or 2 the page parameter to update.php...
CVE-2007-6560
Multiple cross-site scripting XSS vulnerabilities in Logaholic before 2.0 RC8 allow remote attackers to inject arbitrary web script or HTML via 1 the newconfname parameter to profiles.php or 2 the conf parameter to index.php...
CVE-2007-6559
CVE-2007-6559 affects Logaholic prior to 2.0 RC8. The vulnerability is a SQL injection via (1) the from parameter to index.php or (2) the page parameter to update.php, enabling remote SQL command execution. The CVSS-derived data in the documents indicates a HIGH base score (7.5) with network atta...
CVE-2007-6559
Multiple SQL injection vulnerabilities in Logaholic before 2.0 RC8 allow remote attackers to execute arbitrary SQL commands via 1 the from parameter to index.php or 2 the page parameter to update.php...
CVE-2007-6560
The CVE-2007-6560 entry concerns Logaholic prior to 2.0 RC8, with XSS vulnerabilities that allow remote attackers to inject arbitrary script/HTML via the newconfname parameter to profiles.php or the conf parameter to index.php. The impact is web-script injection as described in the records; root ...
Logaholic - 'profiles.php?newconfname' Cross-Site Scripting
source: https://www.securityfocus.com/bid/27003/info Logaholic is prone to multiple input-validation vulnerabilities, including multiple SQL-injection issues, a cross-site scripting issue, and an HTML-injection issue. The issues occur because the application fails to sufficiently sanitize...
Logaholic - update.php?page SQL Injection
Logaholic - update.php?page SQL Injection source: https://www.securityfocus.com/bid/27003/info Logaholic is prone to multiple input-validation vulnerabilities, including multiple SQL-injection issues, a cross-site scripting issue, and an HTML-injection issue. The issues occur because the...
Logaholic Web Analytics Software
Logaholic Web Analytics Software Bug found by malibu.r Contact: [email protected] SQL Injection GET /logaholic/index.php?conf=nameofprofile&from=SQL INJECTION GET /logaholic/update.php?conf=nameofprofile&page=SQL INjection Cross Site Scripting POST variable "newconfname" in...
Logaholic - index.php SQL Injection
Logaholic - index.php SQL Injection source: https://www.securityfocus.com/bid/27003/info Logaholic is prone to multiple input-validation vulnerabilities, including multiple SQL-injection issues, a cross-site scripting issue, and an HTML-injection issue. The issues occur because the application...