10 matches found
EUVD-2008-3547
Malware in sbrugna...
POWERGAP Shopsystem 's03.php' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/30558/info POWERGAP Shopsystem is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...
PowerGap Shopsystem "ag" SQL注入漏洞
CNCAN ID:CNCAN-2008081110 PowerGap Shopsystem是一款基于PHP的WEB应用程序。 PowerGap Shopsystem不正确处理用户提交的输入,远程攻击者可以利用漏洞进行SQL注入攻击,获得敏感信息或操作数据库。 问题是由于's03.php'脚本不正确过滤"ag"参数,构建恶意SQL查询作为参数数据,可更改原来的SQL逻辑,可获得敏感信息或操作数据库。 PowerGap Shopsystem 目前没有解决方案提供: http://www.powergap.de/shopsystem-powergap.htm...
CVE-2008-3561
SQL injection vulnerability in s03.php in Powergap Shopsystem, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the ag parameter...
Sql injection
SQL injection vulnerability in s03.php in Powergap Shopsystem, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the ag parameter...
CVE-2008-3561
SQL injection vulnerability in s03.php in Powergap Shopsystem, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the ag parameter...
CVE-2008-3561
The CVE-2008-3561 entry describes an SQL injection in Powergap Shopsystem via s03.php when magic_quotes_gpc is disabled. The vulnerable component is the ag parameter, enabling remote attackers to execute arbitrary SQL commands. Public sources (NVD, CVE listings) confirm the vulnerability and affe...
POWERGAP ShopSystem - s03.php SQL Injection
POWERGAP ShopSystem - s03.php SQL Injection source: https://www.securityfocus.com/bid/30558/info POWERGAP Shopsystem is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attack...
powergap-sql.txt
=============================================== PowerGap Shopsystem SQL Injection =============================================== Title: : PowerGap Shopsystem SQL Injection - URL : www.powergap.de - Found : 23 Jul. 2008 - 13:07 - Author : Rohit Bansal - Google Dork : intext:c POWERGAP - Exploit: ...
POWERGAP ShopSystem - 's03.php' SQL Injection
source: https://www.securityfocus.com/bid/30558/info POWERGAP Shopsystem is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or...