CVE-2010-3993

Unspecified vulnerability in HP Insight Control Server Migration before 6.2 allows remote attackers to obtain sensitive information or modify data via unknown vectors...

MySITE - SQL Injection / Cross-Site Scripting

source: https://www.securityfocus.com/bid/43510/info MySITE is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these vulnerabilities could allow an attacker to steal cookie-based authenticati...

Group-Office 'modules/notes/json.php' SQL Injection Vulnerability

Group-Office is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to execute arbitrary code, compromise the application, access or modify data, or exploit latent...

Code injection

Unspecified vulnerability on the HP ProCurve 2626 and 2650 switches before H.10.80 allows remote attackers to obtain sensitive information, modify data, and cause a denial of service via unknown vectors...

Allinta CMS 22.07.2010 - Multiple SQL Injections Cross-Site Scripting Vulnerabilities

Allinta CMS 22.07.2010 - Multiple SQL Injections Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/42320/info Allinta CMS is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize...

CVE-2010-2707

Unspecified vulnerability on the HP ProCurve 2626 and 2650 switches before H.10.80 allows remote attackers to obtain sensitive information, modify data, and cause a denial of service via unknown vectors...

CVE-2010-1967

Unspecified vulnerability in HP Insight Software Installer for Windows before 6.1 allows local users to read or modify data via unknown vectors...

CVE-2010-1970

HP Insight Software Installer for Windows (pre-6.1) is affected by CVE-2010-1970. The vulnerability allows local users to read or modify data and potentially gain privileges due to an unspecified flaw in the installer component. Affected product line is HP Insight Software Installer for Windows, ...

DPScms - 'q' SQL Injection / Cross-Site Scripting

source: https://www.securityfocus.com/bid/41273/info DPScms is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based authentication...

eBay Clone Script 2010 - showcategory.php SQL Injection

eBay Clone Script 2010 - showcategory.php SQL Injection source: https://www.securityfocus.com/bid/41200/info eBay Clone Script 2010 is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could...

V-EVA Classified Script 5.1 - classified_img.php SQL Injection

V-EVA Classified Script 5.1 - classifiedimg.php SQL Injection source: https://www.securityfocus.com/bid/41204/info V-EVA Classified Script is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue...

Customer Paradigm PageDirector - id SQL Injection

Customer Paradigm PageDirector - id SQL Injection source: https://www.securityfocus.com/bid/41184/info Customer Paradigm PageDirector is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue coul...

BlaherTech Placeto CMS - 'Username' SQL Injection

source: https://www.securityfocus.com/bid/41190/info BlaherTech Placeto CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access ...

AbleSpace 1.0 - 'news.php' SQL Injection

source: https://www.securityfocus.com/bid/41139/info AbleSpace is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify dat...

webConductor - 'default.asp' SQL Injection

source: https://www.securityfocus.com/bid/41042/info webConductor is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

SaffaTunes CMS - 'news.php' Multiple SQL Injections

source: https://www.securityfocus.com/bid/40995/info SaffaTunes CMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access ...

Joomla! Component Gallery XML 1.1 - SQL Injection Local File Inclusion

Joomla! Component Gallery XML 1.1 - SQL Injection Local File Inclusion source: https://www.securityfocus.com/bid/40964/info The Gallery XML Joomla! component is prone to an SQL-injection vulnerability and a local file-include vulnerability because it fails to sufficiently sanitize user-supplied...

CVE-2010-1959

Unspecified vulnerability in HP TestDirector for Quality Center 9.2 before Patch8 allows remote attackers to modify data via unknown vectors...

CVE-2010-1556

Unspecified vulnerability in HP Systems Insight Manager SIM 5.3, 5.3 Update 1, and 6.0 allows remote attackers to obtain sensitive information and modify data via unknown vectors...

eFront 3.x - 'ask_chat.php' SQL Injection

source: https://www.securityfocus.com/bid/40032/info eFront is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, ...