17 matches found
EUVD-2006-6692
Malware in sbrugna...
EUVD-2006-6691
Malware in sbrugna...
MGinternet Property Site Manager listings.asp s Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/21073/info MGinternet Property Site Manager is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An...
MGinternet Property Site Manager listings.asp Multiple Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/21073/info MGinternet Property Site Manager is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An...
MGinternet Property Site Manager detail.asp p Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/21073/info MGinternet Property Site Manager is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An...
CVE-2006-6708
Cross-site scripting XSS vulnerability in listings.asp in MGinternet Property Site Manager allows remote attackers to inject arbitrary web script or HTML via the s parameter...
CVE-2006-6709
Multiple SQL injection vulnerabilities in MGinternet Property Site Manager allow remote attackers to execute arbitrary SQL commands via the 1 p parameter to a detail.asp; the 2 l, 3 typ, or 4 loc parameter to b listings.asp; or the 5 Password or 6 Username parameter to c adminlogin.asp. NOTE: som...
CVE-2006-6709
CVE-2006-6709 affects MGinternet Property Site Manager. The NVD description identifies multiple SQL injection vulnerabilities in this product, exploitable via input parameters: (1) p to detail.asp; (2) l, (3) typ, (4) loc to listings.asp; and (5) Password or (6) Username to admin_login.asp. Root ...
CVE-2006-6708
CVE-2006-6708 describes a cross-site scripting (XSS) vulnerability in MGinternet Property Site Manager, specifically in the listings.asp handler. The vulnerability allows remote attackers to inject arbitrary web script or HTML by manipulating the s parameter. The available documents do not provid...
CVE-2006-6709
Multiple SQL injection vulnerabilities in MGinternet Property Site Manager allow remote attackers to execute arbitrary SQL commands via the 1 p parameter to a detail.asp; the 2 l, 3 typ, or 4 loc parameter to b listings.asp; or the 5 Password or 6 Username parameter to c adminlogin.asp. NOTE: som...
CVE-2006-6708
Cross-site scripting XSS vulnerability in listings.asp in MGinternet Property Site Manager allows remote attackers to inject arbitrary web script or HTML via the s parameter...
Property Site Manager [login bypass ,multiples injection sql & xss (get)]
vendor site:http://www.mginternet.com/ product:Property Site Manager bug:injection sql ,login bypass , xss risk:medium login bypass : just login with : user: 'or''=' passwd: 'or''=' injection sql : http://site.com/asp/detail.asp?l=&p='sql http://site.com/asp/listings.asp?l='sql...
MGinternet Property Site Manager - admin_login.asp Multiple SQL Injections
MGinternet Property Site Manager - adminlogin.asp Multiple SQL Injections source: https://www.securityfocus.com/bid/21073/info MGinternet Property Site Manager is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to...
MGinternet Property Site Manager - listings.asp?s Cross-Site Scripting
MGinternet Property Site Manager - listings.asp?s Cross-Site Scripting source: https://www.securityfocus.com/bid/21073/info MGinternet Property Site Manager is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to...
MGinternet Property Site Manager - 'detail.asp?p' SQL Injection
source: https://www.securityfocus.com/bid/21073/info MGinternet Property Site Manager is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An attacker could exploit these issu...
MGinternet Property Site Manager - 'admin_login.asp' Multiple SQL Injections
source: https://www.securityfocus.com/bid/21073/info MGinternet Property Site Manager is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An attacker could exploit these issu...
MGinternet Property Site Manager - detail.asp?p SQL Injection
MGinternet Property Site Manager - detail.asp?p SQL Injection source: https://www.securityfocus.com/bid/21073/info MGinternet Property Site Manager is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently...