2 matches found
SQL Injection Vulnerability in Xinhuo Collaboration Office System we***/mo***/wo***.php
Xinhuo Co-operation Office System is an office system based on php and mysql development. SQL injection vulnerability exists in we/mo/wo.php, which can be exploited by attackers to obtain sensitive database information...
DEBIAN-CVE-2011-1587
Cross-site scripting XSS vulnerability in MediaWiki before 1.16.4, when Internet Explorer 6 or earlier is used, allows remote attackers to inject arbitrary web script or HTML via an uploaded file accessed with a dangerous extension such as .html located before a ? question mark in a query string,...