EUVD-2006-5636

Malware in sbrugna...

EUVD-2007-5287

Malware in sbrugna...

EUVD-2007-5392

Malware in sbrugna...

The vulnerability of the IP address checking function in FortiOS operating systems and FortiProxy proxy servers allows attackers to circumvent existing security restrictions.

The vulnerability of the IP address checking function in FortiOS operating systems and FortiProxy proxy servers for protecting against Internet attacks is related to the improper handling of numerical parameters based on different criteria. Exploiting this vulnerability allows a malicious actor t...

DEBIAN-CVE-2019-9085

Hoteldruid before v2.3.1 allows remote authenticated users to cause a denial of service invoice-creation outage via the nfile parameter to visualizzacontratto.php with invalid arguments any non-numeric value, as demonstrated by the anno=2019&idtransazione=1&numerocontratto=1&nfile=a query string ...

Sql injection

directory.php in AJchat 0.10 allows remote attackers to bypass input validation and conduct SQL injection attacks via a numeric parameter with a value matching the s parameter's hash value, which prevents the associated $GET"s" variable from being unset. NOTE: it could be argued that this...

CVE-2007-0233

wp-trackback.php in WordPress 2.0.6 and earlier does not properly unset variables when the input data includes a numeric parameter with a value matching an alphanumeric parameter's hash value, which allows remote attackers to execute arbitrary SQL commands via the tbid parameter. NOTE: it could b...

CVE-2006-5651

list.php in DigiOz Guestbook before 1.7.1 allows remote attackers to obtain sensitive information via a non-numeric page parameter, which displays the installation path in the resulting error message...