134 matches found
CVE-2007-5182
Cross-site scripting XSS vulnerability in mail.asp in Netkamp Emlak Scripti allows remote attackers to inject arbitrary web script or HTML via the 1 Email parameter, and possibly the 2 Ad, 3 Soyad, 4 Konu, and 5 Mesaj parameters to iletisim.asp...
CVE-2007-5181
CVE-2007-5181 : SQL injection in detay.asp of Netkamp Emlak Scripti. The flaw allows remote attackers to execute arbitrary SQL commands via the ilan_id parameter, with reported impacts on confidentiality, integrity, and availability (partial). Base score 7.5 (HIGH) via NVD; no remediation details...
CVE-2007-5181
SQL injection vulnerability in detay.asp in Netkamp Emlak Scripti allows remote attackers to execute arbitrary SQL commands via the ilanid parameter...
Netkamp Emlak Scripti - Multiple Input Validation Vulnerabilities
source: https://www.securityfocus.com/bid/25875/info Netkamp Emlak Scripti is prone to multiple input-validation vulnerabilities, including multiple HTML-injection issues and an SQL-injection issue, because the application fails to sanitize user-supplied input. A successful exploit may allow an...
Netkamp Emlak Scripti - Multiple Input Validation Vulnerabilities
Netkamp Emlak Scripti - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/25875/info Netkamp Emlak Scripti is prone to multiple input-validation vulnerabilities, including multiple HTML-injection issues and an SQL-injection issue, because the application fails to...
netkamp-sql.txt
Netkamp Emlak Scripti XSS & Sql Ýnjections Vulnerability Software: Netkamp Emlak Scripti download: not free350 YTL sale: http://www.netkamp.com/netemlak.asp demo: http://netemlak.netkamp.com/ Found By: GeFORC3 G3 Exploit & example :...
Cross site scripting
Cross-site scripting XSS vulnerability in index.asp in Alisveris Sitesi Scripti allows remote attackers to inject arbitrary web script or HTML via the q parameter in a search mod action. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...
CVE-2007-4076
Multiple SQL injection vulnerabilities in index.asp in Alisveris Sitesi Scripti allow remote attackers to execute arbitrary SQL commands via the 1 productid or 2 catid parameter in a product mod action. NOTE: the provenance of this information is unknown; the details are obtained solely from thir...
Sql injection
Multiple SQL injection vulnerabilities in index.asp in Alisveris Sitesi Scripti allow remote attackers to execute arbitrary SQL commands via the 1 productid or 2 catid parameter in a product mod action. NOTE: the provenance of this information is unknown; the details are obtained solely from thir...
CVE-2007-4075
Cross-site scripting XSS vulnerability in index.asp in Alisveris Sitesi Scripti allows remote attackers to inject arbitrary web script or HTML via the q parameter in a search mod action. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...
CVE-2007-4075
Cross-site scripting XSS vulnerability in index.asp in Alisveris Sitesi Scripti allows remote attackers to inject arbitrary web script or HTML via the q parameter in a search mod action. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...
CVE-2007-4075
CVE-2007-4075: XSS in index.asp of Alisveris Sitesi Scripti. The vulnerability occurs in the search mod action via the q parameter, allowing remote attackers to inject arbitrary script/HTML. Affected software is the Alisveris Sitesi Scripti package; root cause is a reflected/parameter-based XSS i...
CVE-2007-4076
Multiple SQL injection vulnerabilities in index.asp in Alisveris Sitesi Scripti allow remote attackers to execute arbitrary SQL commands via the 1 productid or 2 catid parameter in a product mod action. NOTE: the provenance of this information is unknown; the details are obtained solely from thir...
CVE-2007-4076
CVE-2007-4076 describes multiple SQL injection vulnerabilities in index.asp of the Alisveris Sitesi Scripti. The issue allows remote attackers to execute arbitrary SQL commands through the (1) product_id or (2) cat_id parameters in a product mod action. The NVD entry notes the provenance is from ...
Alisveris Sitesi Scripti - index.asp SQL Injection
Alisveris Sitesi Scripti - index.asp SQL Injection source: https://www.securityfocus.com/bid/25005/info Alisveris Sitesi Scripti is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues...
Alisveris Sitesi Scripti - 'index.asp' SQL Injection
source: https://www.securityfocus.com/bid/25005/info Alisveris Sitesi Scripti is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the...
sitesi-xss.txt
Alýþveriþ Sitesi Scripti XSS Vulnerability. Software: Alýþveriþ Sitesi Scripti download : not free 350 YTL http://www.aspindir.com/goster/5024 demo: http://www.hemensatarim.com/ Found By: GeFORC3 G3 Exploit: This xss works on Alýþveriþ Sitesi Scripti's search...
duyuru-sql.txt
Fıstıq Duyuru Scripti Remote Sql İnjection File : goster.asp Sql : -1%20union+all+select+0,kullaniciadi,sifre,3+from+admin Admin Name + Admin Pass Admin Menu: yoneticiii/default.asp Thanks : Ajann , Xoron , ApAci , ErNE , Uyuss , Eno7 , Thehacker , Enjexion .pl Exploit Code : !/usr/bin/perl Scrip...
CVE-2007-1422
SQL injection vulnerability in goster.asp in fystyq Duyuru Scripti allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2007-0688...
CVE-2007-1422
CVE-2007-1422 is a SQL injection vulnerability in the goster.asp component of the fystyq Duyuru Scripti, where an attacker can pass the id parameter to execute arbitrary SQL commands. The connected records confirm the affected file and parameter, and state this vector is distinct from CVE-2007-06...