34 matches found
EUVD-2006-5995
Malware in sbrugna...
EUVD-2006-5928
Malware in sbrugna...
EUVD-2006-6691
Malware in sbrugna...
EUVD-2006-6692
Malware in sbrugna...
MGinternet Property Site Manager listings.asp Multiple Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/21073/info MGinternet Property Site Manager is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An...
MGinternet Property Site Manager detail.asp p Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/21073/info MGinternet Property Site Manager is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An...
MGinternet Property Site Manager listings.asp s Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/21073/info MGinternet Property Site Manager is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An...
CVE-2006-6709
Multiple SQL injection vulnerabilities in MGinternet Property Site Manager allow remote attackers to execute arbitrary SQL commands via the 1 p parameter to a detail.asp; the 2 l, 3 typ, or 4 loc parameter to b listings.asp; or the 5 Password or 6 Username parameter to c adminlogin.asp. NOTE: som...
CVE-2006-6708
Cross-site scripting XSS vulnerability in listings.asp in MGinternet Property Site Manager allows remote attackers to inject arbitrary web script or HTML via the s parameter...
CVE-2006-6709
CVE-2006-6709 affects MGinternet Property Site Manager. The NVD description identifies multiple SQL injection vulnerabilities in this product, exploitable via input parameters: (1) p to detail.asp; (2) l, (3) typ, (4) loc to listings.asp; and (5) Password or (6) Username to admin_login.asp. Root ...
CVE-2006-6708
Cross-site scripting XSS vulnerability in listings.asp in MGinternet Property Site Manager allows remote attackers to inject arbitrary web script or HTML via the s parameter...
CVE-2006-6708
CVE-2006-6708 describes a cross-site scripting (XSS) vulnerability in MGinternet Property Site Manager, specifically in the listings.asp handler. The vulnerability allows remote attackers to inject arbitrary web script or HTML by manipulating the s parameter. The available documents do not provid...
CVE-2006-6709
Multiple SQL injection vulnerabilities in MGinternet Property Site Manager allow remote attackers to execute arbitrary SQL commands via the 1 p parameter to a detail.asp; the 2 l, 3 typ, or 4 loc parameter to b listings.asp; or the 5 Password or 6 Username parameter to c adminlogin.asp. NOTE: som...
CVE-2006-6012
Cross-site scripting XSS vulnerability in csm/asp/listings.asp in MGinternet Car Site Manager CSM allows remote attackers to inject arbitrary web script or HTML via the p parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2006-6012
Cross-site scripting XSS vulnerability in csm/asp/listings.asp in MGinternet Car Site Manager CSM allows remote attackers to inject arbitrary web script or HTML via the p parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2006-6012
The CVE-2006-6012 entry describes a Cross-site scripting (XSS) vulnerability in MGinternet Car Site Manager (CSM), specifically in the file path csm/asp/listings.asp, exploitable via the p parameter. The affected component is the CSM web application; the underlying cause is improper handling of i...
CVE-2006-5944
Cross-site scripting XSS vulnerability in csm/asp/listings.asp in MGinternet Car Site Manager CSM allows remote attackers to inject arbitrary web script or HTML via the s parameter...
CVE-2006-5945
Multiple SQL injection vulnerabilities in MGinternet Car Site Manager CSM allow remote attackers to execute arbitrary SQL commands via the 1 p parameter to a csm/asp/detail.asp, or the 2 l, 3 typ, or 4 loc parameter to b csm/asp/listings.asp...
CVE-2006-5945
Multiple SQL injection vulnerabilities in MGinternet Car Site Manager CSM allow remote attackers to execute arbitrary SQL commands via the 1 p parameter to a csm/asp/detail.asp, or the 2 l, 3 typ, or 4 loc parameter to b csm/asp/listings.asp...
EUVD-2006-5927
Cross-site scripting XSS vulnerability in csm/asp/listings.asp in MGinternet Car Site Manager CSM allows remote attackers to inject arbitrary web script or HTML via the s parameter...