3172 matches found
Pixel Motion - '/admin/index.php' Multiple SQL Injections
source: https://www.securityfocus.com/bid/17260/info Pixel Motion is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...
Pixel Motion - 'index.php?date' SQL Injection
source: https://www.securityfocus.com/bid/17260/info Pixel Motion is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...
Advisory-20.txt
/ -------------------------------------------------------- Neo Security Team NST� - Advisory 20 - 04/03/06 -------------------------------------------------------- Program: Pixel Post Homepage: http://photoblogger.halof.de/ Vulnerable Versions: 3.0 and lower versions. Risk: High! Impact: Critical...
adv_pixelpost.txt
/ -------------------------------------------------------- Neo Security Team NST� - Advisory 19 - 04/03/06 -------------------------------------------------------- Program: Pixel Post Homepage: http://www.pixelpost.org/ Vulnerable Versions: 1.4.3, 1.5 beta1 and possibly lower versions. Risk: High...
Pixel Post Multiple Vulnerabilities
/ -------------------------------------------------------- Neo Security Team NST - Advisory 19 - 04/03/06 -------------------------------------------------------- Program: Pixel Post Homepage: http://www.pixelpost.org/ Vulnerable Versions: 1.4.3, 1.5 beta1 and possibly lower versions. Risk: High!...
CVE-2005-0649
Pixel-Apes SafeHTML before 1.2.1 allows remote attackers to bypass cross-site scripting XSS protection via "hexadecimal HTML entities."...
CVE-2005-0648
Multiple vulnerabilities in Pixel-Apes SafeHTML before 1.3.0 allow remote attackers to bypass cross-site scripting XSS protection via 1 "decimal HTML entities" or 2 "the \x00 symbol."...
CVE-2005-0648
Multiple vulnerabilities in Pixel-Apes SafeHTML before 1.3.0 allow remote attackers to bypass cross-site scripting XSS protection via 1 "decimal HTML entities" or 2 "the \x00 symbol."...
CVE-2005-0649
Pixel-Apes SafeHTML prior to version 1.2.1 is vulnerable to bypassing XSS protection via hexadecimal HTML entities. Affected: SafeHTML component (pre-1.2.1). Root cause: input handling allows bypass of HTML entity encoding to defeat XSS protections. Impact: potential remote XSS. Exploitation deta...
CVE-2005-0649
Pixel-Apes SafeHTML before 1.2.1 allows remote attackers to bypass cross-site scripting XSS protection via "hexadecimal HTML entities."...
CVE-2005-0648
Pixel-Apes SafeHTML (pre-1.3.0) contains vulnerabilities that allow remote attackers to bypass XSS protections via (1) decimal HTML entities or (2) the null byte \x00 symbol. Affected component is SafeHTML prior to version 1.3.0. Impact is HTML/script injection bypass of protections; no other sys...
Security update 1970-01-01
...