4 matches found
EUVD-2010-4883
Malware in sbrugna...
CVE-2009-3497
SQL injection vulnerability in viewlisting.php in Vastal I-Tech Agent Zone aka The Real Estate Script allows remote attackers to execute arbitrary SQL commands via the id parameter...
JSPMySQL Administrador CSRF & XSS Vulnerabilities
JSPMySQL Administrador,通过基于jsp技术的B/S模式来远程管理MySQL数据库。下载链接:https://sites.google.com/site/mfpledon/producao-de-software影响版本:JSPMySQL Administrador V.1漏洞类型:CSRF、XSS漏洞等级: 高危CVE-ID:N/A披露时间:供应商通知:2015年8月31日公开披露:2015年9月4日漏洞详情:1)允许远程攻击者在没有CSRF令牌的情况下,在MySQL数据库中执行任意的SQL命令。2)listabd2.jsp中存在XSS的切入点。请求方法:POST ...
CVE-2010-1595
Multiple SQL injection vulnerabilities in ocsreports/index.php in OCS Inventory NG 1.02.1 allow remote attackers to execute arbitrary SQL commands via the 1 c, 2 val1, or 3 ongletbis parameter...