262 matches found
CVE-2010-4980
SQL injection vulnerability in packagedetails.php in iScripts ReserveLogic 1.0 allows remote attackers to execute arbitrary SQL commands via the pid parameter...
Sql injection
SQL injection vulnerability in ICloudCenter ICJobSite 1.1 allows remote attackers to execute arbitrary SQL commands via the pid parameter to an unspecified component, a different vulnerability than CVE-2011-1546. NOTE: the provenance of this information is unknown; the details are obtained solely...
SnapProof SQL Injection
Exploit Title: SnapProof SQL Injection Vulnerability Date: 29th july 2010 Author: Dinesh Arora Critical:high Product : Commercial Sample Affected Parameter: pID contact: [email protected] Greetz to :b0nd, Fbih2s,Beenu,Charles ,j4ckh4x0r, punter,eberly Shoutz to : http://www.garage4hackers.co...
2daybiz Freelance script SQL injection Vulnerability
No description provided by source. Exploit Title: 2daybiz Freelance script SQL injection Vulnerability Date: 24/06/2010 Author: JaMbA Script url: http://www.2daybiz.com/freelancescript.html Version: N/A Tested on: Windows CVE : ::::::::::::::::::::::::: :::::::::::::::::::::::::...
Netsniper SQL Injection Vulnerability
Exploit for php platform in category web applications ===================================== Netsniper SQL Injection Vulnerability ===================================== Author : D3stan , DrgpxX Group : Aras cyber Army Email : destan.b3statgmail.com && email protected Critical Lvl : high...
Sql injection
SQL injection vulnerability in the Keep It Simple Stupid KISS Software Advertiser comksadvertiser component for Joomla! allows remote attackers to execute arbitrary SQL commands via the pid parameter in a showcats action to index.php...
PT-2010-2669 · Open Source Matters · Joomla!
Name of the Vulnerable Software and Affected Versions: Joomla! component com ksadvertiser affected versions not specified Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the pid parameter in a showcats action to index.php...
Sql injection
SQL injection vulnerability in page.html in Xstate Real Estate 1.0 allows remote attackers to execute arbitrary SQL commands via the pid parameter...
CVE-2009-4477
SQL injection vulnerability in page.html in Xstate Real Estate 1.0 allows remote attackers to execute arbitrary SQL commands via the pid parameter...
CVE-2009-4384
Multiple cross-site scripting XSS vulnerabilities in Scriptsez.net Ez Poll Hoster EPH allow remote attackers to inject arbitrary web script or HTML via the 1 pid parameter in a code action to index.php and the 2 uid parameter in a view action to profile.php...
CVE-2009-1623
Cross-site scripting XSS vulnerability in index.php in Dew-NewPHPLinks 2.0 allows remote attackers to inject arbitrary web script or HTML via the PID parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in index.php in Dew-NewPHPLinks 2.0 allows remote attackers to inject arbitrary web script or HTML via the PID parameter...
CVE-2009-1623
Cross-site scripting XSS vulnerability in index.php in Dew-NewPHPLinks 2.0 allows remote attackers to inject arbitrary web script or HTML via the PID parameter...
CVE-2008-6333
CVE-2008-6333 affects RSS Simple News (RSSSN) and is a SQL injection in news.php when magic_quotes_gpc is disabled. The underlying issue is improper input handling on the pid parameter, allowing an attacker to alter SQL commands executed by the application. The CVSS vector indicates network acces...
CVE-2009-0728
SQL injection vulnerability in the MyeGallery module for MAXdev MDPro MD-Pro and Postnuke allows remote attackers to execute arbitrary SQL commands via the pid parameter in a showpic action to index.php...
CVE-2009-0728
SQL injection vulnerability in the MyeGallery module for MAXdev MDPro MD-Pro and Postnuke allows remote attackers to execute arbitrary SQL commands via the pid parameter in a showpic action to index.php...
Sql injection
SQL injection vulnerability in index.php in Airvae Commerce 3.0 allows remote attackers to execute arbitrary SQL commands via the pid parameter...
Sql injection
SQL injection vulnerability in productdetail.php in DXShopCart 4.30mc allows remote attackers to execute arbitrary SQL commands via the pid parameter...
CVE-2008-4744
SQL injection vulnerability in productdetail.php in DXShopCart 4.30mc allows remote attackers to execute arbitrary SQL commands via the pid parameter...
CVE-2008-3594
SQL injection vulnerability in viewdetails.php in MagicScripts E-Store Kit-1, E-Store Kit-2, E-Store Kit-1 Pro PayPal Edition, and E-Store Kit-2 PayPal Edition allows remote attackers to execute arbitrary SQL commands via the pid parameter...