ManageEngine Applications Manager < 13530 Multiple SQLi Vulnerabilities

ManageEngine Applications Manager is prone to multiple SQL injection SQLi vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE ...

Contrexx multiple input validation vulnerabilities-vulnerability warning-the black bar safety net

Affected system: Contrexx Contrexx 1.0.4 Not affected system: Contrexx Contrexx 1.0.5 Description: -------------------------------------------------------------------------------- BUGTRAQ ID: 1 4 3 5 2 CVECAN ID: CVE-2 0 0 5-2 4 1 5 Contrexx is an open source content management system. Contrexx...

WebHost Automation Helm Control Panel 3.1.x Multiple Input Validation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/11586/info Helm Control Panel is reported prone to multiple vulnerabilities. These include an SQL injection issue and an HTML injection vulnerability. A remote attacker can execute arbitrary HTML and script code in a user...

eGroupWare 1.0 index.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/13212/info eGroupWare is prone to multiple input validation vulnerabilities. A fixed version is available. The issues arise due to a failure of the application to properly validate user-supplied input. These issues result...

PHP-Ultimate Webboard 2.0 'admindel.php' Multiple Input Validation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/30822/info PHP-Ultimate Webboard is prone multiple-input validation vulnerabilities because the application fails to sufficiently sanitize user-supplied input. Successful exploits will allow unauthorized attackers to dele...

BestWebApp Dating Site Login Component Multiple Field SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21158/info BestWebApp Dating Site is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An attacker...

Go Smart Inc GoSmart Message Board Multiple Input Validation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/11361/info GoSmart Message Board is reported prone to multiple input validation vulnerabilities. These issues may allow a remote attacker to carry out cross-site scripting and SQL injection attacks. The cause of these iss...

PhotoPost Pro 5.1 showgallery.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/12920/info Multiple input validation vulnerabilities reportedly affect PhotoPost Pro. These issues are due to a failure of the application to properly sanitize user-supplied input prior to using it to carry out critical...

QuickPayPro 3.1 customer.tickets.view.php Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15863/info QuickPayPro is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities...

Support Incident Tracker (SiT!) Multiple Input Validation Vulnerabilities

Support Incident Tracker SiT! is prone to the following input- validation vulnerabilities: 1. Multiple cross-site scripting vulnerabilities 2. Multiple SQL-injection vulnerabilities 3. Multiple cross-site request-forgery vulnerabilities Exploiting these issues could allow an attacker to execute...

Pandora FMS Authentication Bypass and Multiple Input Validation Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Pandora FMS Authentication Bypass and Multiple Input Validation Vulnerabilities CVE IDs in this security advisory: 1 Authentication bypass - CVE-2010-4279 2 OS Command Injection - CVE-2010-4278 3 SQL Injection - CVE-2010-4280 4 Blind SQL Injection -...

phpGroupWare Multiple Input Validation Vulnerabilities

phpGroupWare is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to disclose sensitive information, steal cookie-based authentication credentials, compromise the application, access or...

Bitrix Site Manager 6/7 - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/33689/info Bitrix Site Manager is prone to multiple input-validation vulnerabilities: - An authentication-bypass vulnerability - A cross-site scripting vulnerability An attacker may leverage these issues to gain unauthorized access to the affected...

DFLabs PTK 1.0 - Local Command Execution

DFLabs PTK 1.0 - Local Command Execution ==================================================== Security Research Advisory Vulnerability name: DFLabs PTK Local Command Execution Vulnerability Advisory number: LC-2008-07 Advisory URL: http://www.ikkisoft.com...

Falcon Series One 1.4.3 stable - Multiple Input Validation Vulnerabilities

Falcon Series One 1.4.3 stable - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/26798/info Falcon Series One is prone to multiple input-validation vulnerabilities because it fails to properly sanitize user-supplied input. These issues include a remote...

Netwin SurgeFTP 2.3a1 - SurgeFTPMGR.cgi Multiple Input Validation Vulnerabilities

Netwin SurgeFTP 2.3a1 - SurgeFTPMGR.cgi Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/21534/info Netwin SurgeFTP is prone to multiple input-validation vulnerabilities because it fails to sanitize user-supplied input. A successful exploit of these...

UBB.threads-6.txt

Hello,, UBB.threads Multiple input validation error Discovered By : HACKERS PAL Copy rights : HACKERS PAL Website : http://www.soqor.net Email Address : [email protected] Tested on Version 6 6.5.1.1 and other versions maybe affected Remote File including :...

BandSite CMS 1.1 - &#039;merch_content.php&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/20137/info Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. These issues may allow an attacker to access sensitive information, execute arbitrary server-side...

VWar 1.x - war.php Multiple SQL Injections

VWar 1.x - war.php Multiple SQL Injections source: https://www.securityfocus.com/bid/19327/info Vwar is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues. These issues occur because the application fails to properly sanitize user-supplied...

PHP Script Tools PSY Auction - item.php?id SQL Injection

PHP Script Tools PSY Auction - item.php?id SQL Injection source: https://www.securityfocus.com/bid/17974/info PSY Auction is prone to multiple input-validation vulnerabilities. The issues include HTML-injection and SQL-injection vulnerabilities. These issues are due to a failure in the applicatio...