15 matches found
EUVD-2004-2255
Malware in sbrugna...
EUVD-2004-2232
Malware in sbrugna...
EUVD-2005-2207
Malware in sbrugna...
EUVD-2004-2258
Malware in sbrugna...
EUVD-2004-2224
Malware in sbrugna...
CVE-2005-2206
Multiple SQL injection vulnerabilities in CartWIZ allow remote attackers to modify SQL statements via the 1 idProduct parameter to tellAFriend.asp, 2 sortType parameter to viewSupportTickets.asp, or the id parameter to 3 updateCreditCards.asp or 4 deleteCreditCards.asp...
CVE-2004-2354
SQL injection vulnerability in 4nGuestbook 0.92 for PHP-Nuke 6.5 through 6.9 allows remote attackers to modify SQL statements via the entry parameter to modules.php, which can also facilitate cross-site scripting XSS attacks when MySQL errors are triggered...
CVE-2004-2354
CVE-2004-2354 describes a SQL injection vulnerability in the 4nGuestbook 0.92 module used with PHP-Nuke 6.5–6.9. The flaw allows remote attackers to modify SQL statements via the entry parameter to modules.php, with the potential to trigger MySQL errors that may enable cross-site scripting (XSS)....
CVE-2005-2432
SQL injection vulnerability in PhpList allows remote attackers to modify SQL statements via the id argument to admin pages such as 1 members or 2 admin...
CVE-2004-2266
SQL injection vulnerability in Ansel 2.1 and earlier allows remote attackers to modify SQL statements via the image parameter...
CVE-2004-2266
CVE-2004-2266 affects Ansel 2.1 and earlier. The issue is a SQL injection vulnerability that allows remote attackers to modify SQL statements via the image parameter. According to the provided data, the NVD CVSS v2.0 base score is 7.5 (HIGH) with network attack vector, low attack complexity, no a...
CVE-2005-2284
Multiple SQL injection vulnerabilities in WebEOC before 6.0.2 allow remote attackers to modify SQL statements via unknown attack vectors...
CVE-2004-2240
Multiple SQL injection vulnerabilities in Phorum 5.0.11 and earlier allow remote attackers to modify SQL statements via 1 the query string in read.php or 2 unknown vectors in file.php...
CVE-2004-2232
SQL injection vulnerability in sql.php in the Glossary module in Moodle 1.4.1 and earlier allows remote attackers to modify SQL statements...
CVE-2005-2206
Multiple SQL injection vulnerabilities in CartWIZ allow remote attackers to modify SQL statements via the 1 idProduct parameter to tellAFriend.asp, 2 sortType parameter to viewSupportTickets.asp, or the id parameter to 3 updateCreditCards.asp or 4 deleteCreditCards.asp...