27 matches found
WS Interactive Automne 4.0 - 228-recherche.php Cross-Site Scripting
WS Interactive Automne 4.0 - 228-recherche.php Cross-Site Scripting source: https://www.securityfocus.com/bid/41686/info Automne is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary...
Sql injection
SQL injection vulnerability in Recherche.php in Aceboard forum allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
CVE-2007-4209
SQL injection vulnerability in Recherche.php in Aceboard forum allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
CVE-2007-4209
SQL injection vulnerability in Recherche.php in Aceboard forum allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
Aceboard forum, SQL injection
Aceboard is prone to a sql injection vulnerability because it fails to properly sanitize user-supplied input into Recherche.php form. An attacker can exploit this issue to modify initial query and reveal information from mysql databse. see u, karmaguedon...
CVE-2006-2015
Cross-site scripting XSS vulnerability in SLsite 1.0 allows remote attackers to inject arbitrary web script or HTML via the recherche parameter in recherche.php. NOTE: other XSS vectors, as reported in the original disclosure, are resultant from other primary vulnerabilities that have separate CV...
CVE-2006-2015
CVE-2006-2015 is an XSS vulnerability in SL_site 1.0, exploitable through the recherche parameter in recherche.php. The issue is documented to allow remote attackers to inject arbitrary web script or HTML. The associated CVSSv2 details indicate Network attack vector, High access complexity, no au...