Sql injection

SQL injection vulnerability in profile.php in WebLeague 2.2.0 allows remote attackers to execute arbitrary SQL commands via the name parameter...

CVE-2009-4560

SQL injection vulnerability in profile.php in WebLeague 2.2.0 allows remote attackers to execute arbitrary SQL commands via the name parameter...

phpbb 2.0.14 profile.php 跨站脚本漏洞

No description provided by source...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Scriptsez.net Ez Poll Hoster EPH allow remote attackers to inject arbitrary web script or HTML via the 1 pid parameter in a code action to index.php and the 2 uid parameter in a view action to profile.php...

MyMsg 'profile.php' SQL Injection Vulnerability

This host is installed with MyMsg and is prone to SQL Injection vulnerability. OpenVAS Vulnerability Test $Id: gbmymsgprofilesqlinjvuln.nasl 4869 2016-12-29 11:01:45Z teissa $ MyMsg 'profile.php' SQL Injection Vulnerability Authors: Nikita MR Copyright: Copyright c 2009 Greenbone Networks GmbH,...

MyMsg 'profile.php' SQL Injection Vulnerability

MyMsg is prone to an SQL injection SQLi vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Sql injection

SQL injection vulnerability in Profile.php in MyMsg 1.0.3 allows remote authenticated users to execute arbitrary SQL commands via the uid parameter in a show action...

CVE-2009-3528

SQL injection vulnerability in Profile.php in MyMsg 1.0.3 allows remote authenticated users to execute arbitrary SQL commands via the uid parameter in a show action...

CVE-2009-3528

SQL injection vulnerability in Profile.php in MyMsg 1.0.3 allows remote authenticated users to execute arbitrary SQL commands via the uid parameter in a show action...

CVE-2009-3528

MyMsg 1.0.3 is vulnerable in profile.php (SQL injection) via the uid parameter in a show action. The OpenVAS entries confirm a remote-authenticated SQLi flaw that could allow arbitrary SQL execution. Impact is partial confidentiality, integrity, and availability, with a CVSS v2 base score of 6.5 ...

CVE-2009-3355

Cross-site scripting XSS vulnerability in profile.php in Datetopia Buy Dating Site 1.0 allows remote attackers to inject arbitrary web script or HTML via the sr parameter...

CVE-2009-3355

CVE-2009-3355 is a cross-site scripting vulnerability in the Datetopia Buy Dating Site 1.0, specifically in profile.php. The issue arises from unsafely handling the s_r parameter, enabling remote attackers to inject arbitrary web script or HTML. Affected software and component: Datetopia Buy Dati...

CVE-2009-3358

The CVE-2009-3358 entry corresponds to a SQL injection in profile.php of the Tourism Scripts Adult Portal escort listing, exploitable via the user_id parameter. Root cause is improper handling of user_id leading to arbitrary SQL execution by remote attackers. The vulnerability is classified with ...

Adult Portal escort listing (user_id) Remote SQL Injection Vulnerability

No description provided by source. Viva IslaM Viva IslaM Remote SQL Injection Vulnerability profile.php userid Adult Portal escort listing http://www.tourismscripts.com/ AuTh0r : Mr.SQL H0ME : WwW.55a.NeT Email : [email protected] -: ExploiteS :-...

Adult Portal escort listing (user_id) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ======================================================================== Adult Portal escort listing userid Remote SQL Injection Vulnerability ======================================================================== Remote SQL Injection...

Adult Portal escort listing - 'user_id' SQL Injection

Viva IslaM Viva IslaM Remote SQL Injection Vulnerability profile.php userid Adult Portal escort listing http://www.tourismscripts.com/ AuTh0r : Mr.SQL H0ME : WwW.55a.NeT Email : [email protected] -: ExploiteS :-...

OpenForum 'profile.php' Authentication Bypass Vulnerability

OpenForum is prone to an authentication bypass vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

VideoGirls BiZ Cross Site Scripting

/ | | \ \ / / | | \ \ / / | |\ \ /\ / / | | | | | | \ V /| | | \ V V / | | || | || / ||| // ,|, | |/ | | | |/ / | ' \ | | / | | | | | | | |||,|| || || VideoGirls BiZ Remote XSS Vulnerabilities Discovered By : Moudi Contact : Download : http://www.videogirls.biz/ Greetings : Mizoz, Zuka,...

CVE-2008-7052

Unrestricted file upload vulnerability in profile.php in Pre Projects Pre Real Estate Listings allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to the file in reimages/...

CVE-2008-7052

CVE-2008-7052 describes an unrestricted file upload flaw in profile.php of the Pre Projects Pre Real Estate Listings application. The vulnerability allows remote authenticated users to upload a file with an executable extension as a profile logo and later access it directly via the re_images/ pat...