Linux Distros Unpatched Vulnerability : CVE-2019-16686

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Dolibarr 9.0.5 has stored XSS in a User Note section to note.php. A user with no privileges can inject script to attack the admin. CVE-2019-16686 Note that Ness...

e-Diary Management System view-note.php File SQL Injection Vulnerability

The e-Diary Management System is an electronic diary management system. The e-Diary Management System suffers from a SQL injection vulnerability that originates from a missing validation of externally entered SQL statements in the parameter mark of the view-note.php file. An attacker can exploit...

Cross site scripting

A vulnerability, which was classified as problematic, was found in SourceCodester Sticky Notes App 1.0. This affects an unknown part of the file endpoint/add-note.php. The manipulation of the argument noteTitle/noteContent leads to cross site scripting. It is possible to initiate the attack...

CVE-2023-5791

The CVE-2023-5791 entry concerns SourceCodester Sticky Notes App 1.0. An XSS vulnerability exists in the file endpoint/add-note.php, triggered by manipulating the noteTitle/noteContent parameters. A remote attack is possible, and the exploit has been disclosed publicly. Multiple connected records...

Cross-Site Scripting (XSS)

dolibarr/dolibarr is vulnerable to cross-site scripting XSS. The vulnerability exists as it was possible to store XSS payloads in the value of $note in user/note.php. This CVE ID is likely to be the same as CVE-2019-16686...

CVE-2019-17223

There is HTML Injection in the Note field in Dolibarr ERP/CRM 10.0.2 via user/note.php...

CVE-2019-16686

Dolibarr 9.0.5 has stored XSS in a User Note section to note.php. A user with no privileges can inject script to attack the admin...

CVE-2019-16686

Dolibarr 9.0.5 has stored XSS in a User Note section to note.php. A user with no privileges can inject script to attack the admin...

proManager <= 0.73 (note.php) Remote SQL Injection Vulnerability

No description provided by source. / + + - - - DEVIL TEAM THE BEST POLISH TEAM - - + + + - proManager = 0.73 Add Admin SQL Injection Vulnerabilities + + + - Script name: proManager v.0.73 - Script site: http://sourceforge.net/projects/promanager/ + + + - Find by: Kacper a.k.a Rahim + - Contact:...

Sql injection

Multiple SQL injection vulnerabilities in Dolibarr 3.1.0 RC and probably earlier allow remote authenticated users to execute arbitrary SQL commands via the 1 sortfield, 2 sortorder, and 3 sall parameters to user/index.php and b user/group/index.php; the id parameter to 4 info.php, 5 perms.php, 6...

CVE-2006-4419

SQL injection vulnerability in note.php in ProManager 0.73 allows remote attackers to execute arbitrary SQL commands via the noteid parameter...

CVE-2006-4419

CVE-2006-4419 describes a SQL injection in ProManager 0.73’s note.php via the note_id parameter, allowing remote attackers to execute arbitrary SQL commands. The affected component is the web application note.php (ProManager 0.73). The vulnerability arises from improper handling of the note_id in...

proManager <= 0.73 (note.php) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ================================================================ proManager = 0.73 note.php Remote SQL Injection Vulnerability ================================================================ / + + - - - DEVIL TEAM THE BEST POLISH TEAM - -...

ProManager 0.73 - &#039;note.php&#039; SQL Injection

/ + + - - - DEVIL TEAM THE BEST POLISH TEAM - - + + + - proManager = 0.73 Add Admin SQL Injection Vulnerabilities + + + - Script name: proManager v.0.73 - Script site: http://sourceforge.net/projects/promanager/ + + + - Find by: Kacper a.k.a Rahim + - Contact: [email protected] - or -...

ProManager 0.73 - note.php SQL Injection

ProManager 0.73 - note.php SQL Injection / + + - - - DEVIL TEAM THE BEST POLISH TEAM - - + + + - proManager = 0.73 Add Admin SQL Injection Vulnerabilities + + + - Script name: proManager v.0.73 - Script site: http://sourceforge.net/projects/promanager/ + + + - Find by: Kacper a.k.a Rahim + -...

proManager &lt;= 0.73 (note.php) Remote SQL Injection Vulnerability

No description provided by source. / + + - - - DEVIL TEAM THE BEST POLISH TEAM - - + + + - proManager = 0.73 Add Admin SQL Injection Vulnerabilities + + + - Script name: proManager v.0.73 - Script site: http://sourceforge.net/projects/promanager/ + + + - Find by: Kacper a.k.a Rahim + - Contact:...