7 matches found
brittonproducts.com XSS vulnerability
Vulnerable URL: http://www.brittonproducts.com/cart/searchresult.asp?DESCRIPTION===1"...
CVE-2010-0954
SQL injection vulnerability in searchresult.asp in Pre Projects Pre E-Learning Portal allows remote attackers to execute arbitrary SQL commands via the courseID parameter...
CVE-2010-0954
CVE-2010-0954 corresponds to a SQL injection vulnerability in the Pre Projects Pre E-Learning Portal, specifically in search_result.asp where the course_ID parameter can be exploited to execute arbitrary SQL commands. The connected documents confirm the vulnerability details and affected componen...
Pre E-Learning Portal SQL Injection
=============================================================================================== o Pre E-Learning Portal SQL Injection Vulnerability Software : Pre E-Learning Portal Vendor : http://www.preproject.com/ Demo : http://www.preprojects.com/elearning/ Author : NoGe Contact :...
Unfixed XSS vulnerability at www.gsfclimited.com
Security researcher Grand Chyren, has submitted on 18/09/2009 a cross-site-scripting XSS vulnerability affecting www.gsfclimited.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 19/09/2009. It is...
Sql injection
SQL injection vulnerability in searchresult.asp in EDirectoryPro 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the keyword parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information...
CVE-2006-2296
The CVE-2006-2296 entry concerns an SQL injection in EDirectoryPro 2.0 and earlier, specifically affecting the search_result.asp component. The underlying issue is a vulnerability in handling the keyword parameter that allows remote attackers to execute arbitrary SQL commands. Affects: EDirectory...