41 matches found
EUVD-2006-5692
Malware in sbrugna...
EUVD-2008-2984
Malware in sbrugna...
EUVD-2008-2985
Malware in sbrugna...
EUVD-2008-2110
Malware in sbrugna...
PHPEasyData 1.5.4 - admin/login.php username Field SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/29659/info PHPEasyData is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage the cross-site scripting issues to...
PHPEasyData 1.5.4 - annuaire.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/29659/info PHPEasyData is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage the cross-site scripting issues to...
PHPEasyData 1.5.4 - last_records.php annuaire Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/29659/info PHPEasyData is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage the cross-site scripting issues to...
PHPEasyData 1.5.4 - annuaire.php annuaire Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/29659/info PHPEasyData is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage the cross-site scripting issues to...
CVE-2008-2995
Multiple SQL injection vulnerabilities in PHPEasyData 1.5.4 allow remote attackers to execute arbitrary SQL commands via 1 the annuaire parameter to annuaire.php or 2 the username field in admin/login.php...
CVE-2008-2994
Multiple cross-site scripting XSS vulnerabilities in PHPEasyData 1.5.4 allow remote attackers to inject arbitrary web script or HTML via the 1 annuaire parameter to a lastrecords.php and b annuaire.php and the 2 by and 3 catid parameters to annuaire.php...
Sql injection
Multiple SQL injection vulnerabilities in PHPEasyData 1.5.4 allow remote attackers to execute arbitrary SQL commands via 1 the annuaire parameter to annuaire.php or 2 the username field in admin/login.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in PHPEasyData 1.5.4 allow remote attackers to inject arbitrary web script or HTML via the 1 annuaire parameter to a lastrecords.php and b annuaire.php and the 2 by and 3 catid parameters to annuaire.php...
CVE-2008-2994
Multiple cross-site scripting XSS vulnerabilities in PHPEasyData 1.5.4 allow remote attackers to inject arbitrary web script or HTML via the 1 annuaire parameter to a lastrecords.php and b annuaire.php and the 2 by and 3 catid parameters to annuaire.php...
CVE-2008-2995
PHPEasyData 1.5.4 contains multiple SQL injection vulnerabilities that allow remote attackers to execute arbitrary SQL commands. The affected entry notes two injection vectors: (1) the annuaire parameter to annuaire.php and (2) the username field in admin/login.php. The NVD listing documents a CV...
CVE-2008-2994
PHPEasyData 1.5.4 is affected by multiple XSS vulnerabilities (CVE-2008-2994). The flaws allow remote attackers to inject arbitrary web script or HTML via the annuaire parameter to last_records.php and annuaire.php, and via the by and cat_id parameters to annuaire.php. Root cause is improper inpu...
PHPEasyData 1.5.4 - annuaire.php?annuaire SQL Injection
PHPEasyData 1.5.4 - annuaire.php?annuaire SQL Injection source: https://www.securityfocus.com/bid/29659/info PHPEasyData is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage the cross-site...
PHPEasyData 1.5.4 - 'annuaire.php?annuaire' SQL Injection
source: https://www.securityfocus.com/bid/29659/info PHPEasyData is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage the cross-site scripting issues to execute arbitrary script code in the...
PHPEasyData 1.5.4 - '/admin/login.php?Username' SQL Injection
source: https://www.securityfocus.com/bid/29659/info PHPEasyData is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage the cross-site scripting issues to execute arbitrary script code in the...
phpeasydata-sqlxss.txt
------------- PHPEasyData ------------- Informations : Langage : PHP Version : 1.5.4 Website : http://www.phpeasydata.com/ Problems : Multiple vulnerabilities Description: PHPEasyData is a PHP application which allow you to manage and display on the web your dynamics data and directories. Details...
PHPEasyData 1.5.4 - annuaire.php Multiple Cross-Site Scripting Vulnerabilities
PHPEasyData 1.5.4 - annuaire.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/29659/info PHPEasyData is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may...