145 matches found
Black Sheep Web Software Form Tools 1.5 Multiple Remote File Include Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/26889/info Black Sheep Web Software Form Tools is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to...
DEV Web Management System 1.5 Multiple Input Validation Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/30447/info DEV Web Management System is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. The issues include local file-include, SQL-injection, and cross-site...
Softbiz Image Gallery config.php msg Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/30546/info Softbiz Photo Gallery is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script co...
Quick Classifieds 1.0 - classifieds/index.php3 DOCUMENT_ROOT Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/28417/info Quick Classifieds is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the applicati...
Juniper Junos 8.5/9.0 J-Web Interface /configuration Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/36537/info Juniper Networks JUNOS is prone to multiple cross-site scripting and HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data to J-Web Juniper Web Management. Attacker-supplie...
CMSCart 1.04 'maindatafunctions.php' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/34017/info CMSCart is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
Active PHP Bookmarks 1.0 APB.PHP Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/23670/info Active PHP Bookmarks is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and t...
Lussumo Vanilla <= 1.1.10 'definitions.php' Multiple Remote File Include Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/38889/info Vanilla is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the...
LetoDMS 1.4.x 'lang' Parameter Local File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/37828/info LetoDMS formerly known as MyDMS is prone to a local file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the...
AIOCP 1.4 'cp_html2txt.php' Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/35811/info AIOCP All In One Control Panel is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the...
Magic Photo Storage Website user/delete_category.php _config[site_path] Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/21965/info Magic Photo Storage Website is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the...
Web Wiz Forums 7.01 Members.ASP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20054/info Web Wiz Forums is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to have arbitrary script code execute in the...
WebPhotoPro Multiple SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/32829/info WebPhotoPro is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...
Linkliste 1.2 Index.PHP Multiple Remote File Include Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/26045/info Linkliste is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and t...
Magic Photo Storage Website user/user_extend.php _config[site_path] Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/21965/info Magic Photo Storage Website is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the...
CodeIgniter 1.0 'BASEPATH' Multiple Remote File Include Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/38672/info CodeIgniter is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and...
Yellow Swordfish Simple Forum 1.x 'sf-profile.php' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/27854/info Simple Forum is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise...
MySQLDumper 1.21 SQL.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20460/info MySQLDumper is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue could allow an attacker to execute attacker-supplied script code ...
Tagit! Tagit2b 2.1.B Build 2 tagmin/manageTagmins.php configpath Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/22518/info TagIt! TagBoard is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application...
RobotStats 0.1 - graph.php DOCUMENT_ROOT Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/28615/info RobotStats is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and...