11 matches found
EUVD-2013-5993
Malware in sbrugna...
Project'Or RIA 3.4.0 (objectDetail.php, objectId param) - SQL Injection
No description provided by source...
[ISecAuditors Security Advisories] Multiple XSS vulnerabilities in "Project'Or RIA"
============================================= INTERNET SECURITY AUDITORS ALERT 2013-018 - Original release date: July 26th, 2013 - Last revised: July 26th, 2013 - Discovered by: Vicente Aguilera Diaz - Severity: 4.3/10 CVSSv2 Base Scored - CVE-ID: CVE-2013-6163...
CVE-2013-6164
SQL injection vulnerability in view/objectDetail.php in Project'Or RIA 3.4.0 allows remote attackers to execute arbitrary SQL commands via the objectId parameter...
Sql injection
SQL injection vulnerability in view/objectDetail.php in Project'Or RIA 3.4.0 allows remote attackers to execute arbitrary SQL commands via the objectId parameter...
CVE-2013-6164
CVE-2013-6164 affects Project'Or RIA 3.4.0. A SQL Injection in view/objectDetail.php via the objectId parameter (Affectations) allows remote attackers to inject arbitrary SQL commands, potentially accessing the database and file system. The ISecAuditors advisory provides PoC-style payloads (e.g.,...
CVE-2013-6163
ProjeQtOr (Project'Or RIA) before 4.0.0 contains multiple XSS vulnerabilities that allow remote attackers to inject arbitrary HTML/script via parameters: type (view/parameter.php), p1value (view/main.php), and objectClass (view/objectDetail.php). Root cause: unsanitized input reflected into pages...
CVE-2013-6164
SQL injection vulnerability in view/objectDetail.php in Project'Or RIA 3.4.0 allows remote attackers to execute arbitrary SQL commands via the objectId parameter...
ProjectOr RIA 3.4.0 - objectDetail.php?objectId SQL Injection
ProjectOr RIA 3.4.0 - objectDetail.php?objectId SQL Injection ============================================= INTERNET SECURITY AUDITORS ALERT 2013-017 - Original release date: July 26th, 2013 - Last revised: July 26th, 2013 - Discovered by: Vicente Aguilera Diaz - Severity: 6.8/10 CVSSv2 Base Scor...
Project'Or RIA 3.4.0 - 'objectDetail.php?objectId' SQL Injection
============================================= INTERNET SECURITY AUDITORS ALERT 2013-017 - Original release date: July 26th, 2013 - Last revised: July 26th, 2013 - Discovered by: Vicente Aguilera Diaz - Severity: 6.8/10 CVSSv2 Base Scored - CVE-ID: CVE-2013-6164...
Project'Or RIA 3.4.0 SQL Injection
============================================= INTERNET SECURITY AUDITORS ALERT 2013-017 - Original release date: July 26th, 2013 - Last revised: July 26th, 2013 - Discovered by: Vicente Aguilera Diaz - Severity: 6.8/10 CVSSv2 Base Scored - CVE-ID: CVE-2013-6164...