EUVD-2007-3889

Malware in sbrugna...

CVE-2023-6413

A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and consists of a SQL injection via photos.php in the id and user parameters. Exploitation of this vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and...

CVE-2023-6413

A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and consists of a SQL injection via photos.php in the id and user parameters. Exploitation of this vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and...

Sql injection

A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and consists of a SQL injection via photos.php in the id and user parameters. Exploitation of this vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and...

CVE-2023-6413 SQL injection in Voovi Social Networking Script

A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and consists of a SQL injection via photos.php in the id and user parameters. Exploitation of this vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and...

nancybrown.com XSS vulnerability

Open Bug Bounty ID: OBB-639007 Description| Value ---|--- Affected Website:| nancybrown.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

lechaletdulac-laclusaz.com XSS vulnerability

Open Bug Bounty ID: OBB-618557 Description| Value ---|--- Affected Website:| lechaletdulac-laclusaz.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

dvoynik.ru XSS vulnerability

Open Bug Bounty ID: OBB-453464 Description| Value ---|--- Affected Website:| dvoynik.ru Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Sheet...

umpchannel.ump.edu.my XSS vulnerability

Vulnerable URL: http://umpchannel.ump.edu.my/photos.php?cat=%22/%3E%3Cscript%3Ealert/OPENBUGBOUNTY/;%3C/script%3E=viewall=alltime=1catname=All Details: Description| Value ---|--- Patched:| No Latest check for patch:| 07.01.2018 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...

krfabs.com XSS vulnerability

Open Bug Bounty ID: OBB-192137 Description| Value ---|--- Affected Website:| krfabs.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Sql injection

Multiple SQL injection vulnerabilities in Zoph aka Zoph Organizes Photos 0.9.1 and earlier allow remote authenticated users to execute arbitrary SQL commands via the 1 action parameter to group.php or 2 user.php or the 3 locationid parameter to photos.php in php/...

Chipmunk Blog photos.php membername Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/29883/info Chipmunk Blog is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in th...

iScripts SocialWare 2.2.x Arbitrary File Upload Vulnerability

No description provided by source. /iScripts SocialWare 2.2.x Arbitrary File Upload Vulnerability Name iScripts SocialWare Vendor http://www.iscripts.com Versions Affected 2.2.x Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com...

PicsEngine 2 Beta Cross Site Scripting / SQL Injection

PicsEngine Application error message Vulnerability ================================================== Author indoushka ================================================== vendor : Powered by PicsEngine 2 Beta ================================================== Blind SQL Injection :...

Sql injection

SQL injection vulnerability in photos.php in Model Agency Manager PRO formerly Modeling Agency Content Management Script allows remote attackers to execute arbitrary SQL commands via the album parameter...

CVE-2009-4731

SQL injection vulnerability in photos.php in Model Agency Manager PRO formerly Modeling Agency Content Management Script allows remote attackers to execute arbitrary SQL commands via the album parameter...

Sql injection

Multiple SQL injection vulnerabilities in Tourism Script Accommodation Hotel Booking Portal Script allow remote attackers to execute arbitrary SQL commands via the hotelid parameter to 1 hotel.php, 2 details.php, 3 roomtypes.php, 4 photos.php, 5 map.php, 6 weather.php, 7 reviews.php, and 8 book.p...

Article Publisher PRO 2.0.3 SQL Injection

---------------------------------------------------------------------------------------------------- Name : Article Publisher PRO v2.0.3 Site : http://www.phpmodelagencyscript.com/ Demo : http://model-agency-manager-pro.phpmodelagencyscript.com/...

Sql injection

Multiple SQL injection vulnerabilities in photos.php in Shutter 0.1.1 allow remote attackers to execute arbitrary SQL commands via the 1 albumID, 2 tagID, and 3 photoID parameters to index.html...

CVE-2009-1650

CVE-2009-1650 affects Shutter 0.1.1: Multiple SQL injection vulnerabilities in photos.php allow remote attackers to inject SQL via albumID, tagID, or photoID parameters to index.html. CVSS v2 base score 7.5 (HIGH) with partial impact on confidentiality, integrity, and availability. No remediation...