16 matches found
EUVD-2009-3043
Malware in sbrugna...
Wedding Planner select.php SQL Injection Vulnerability
Wedding Planner is a wedding planner project. Designed to provide users with an easy way to plan their wedding through a web application while using real data, Wedding Planner v1.0 is vulnerable to a SQL injection vulnerability that stems from a missing validation of externally entered SQL...
CVE-2022-40404
Wedding Planner v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/select.php...
Sql injection
Wedding Planner v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/select.php...
Wedding Management System SQL Injection Vulnerability (CNVD-2022-54292)
Wedding Management System is a wedding planning management system by John Paul Lim Gabule, a personal developer. v1.0 of Wedding Management System is vulnerable to SQL injection, which originates from Wedding-Management/admin/ select.php page lacks validation of externally entered SQL statements,...
CVE-2022-30836
Wedding Management System v1.0 is vulnerable to SQL Injection. via Wedding-Management/admin/select.php...
SQL Injection
zendframework/zendframework1 is vulnerable to SQL injection attacks. The vulnerability exists due to the improper regular expressions used to prevent SQL injection in ZendDbSelect::order, ZendDbSelect::group, and ZendDbSelect::from of Select.php...
imaginaclic.i2005.org XSS vulnerability
Open Bug Bounty ID: OBB-361131 Description| Value ---|--- Affected Website:| imaginaclic.i2005.org Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention...
ExpressionEngine: Reflective XSS
URL http://blackdoorsec.net/sandbox/express/admin.php?/cp/members/bans&search=&sortcol=me%22%3E%3Cimg%20src=x%20onerror=promptdocument.domain%3Emberid&sortdir=desc URL Parameters /cp/members/bans search= sortcol=me%22%3E%3Cimg%20src=x%20onerror=promptdocument.domain%3Emberid sortdir=desc The...
kppw select.php 参数task_id SQL注入漏洞
No description provided by source...
kppw 最新版前台无条件sql注入一枚
简要描述: rt 详细说明: /www/lib/inc/CommonClass.php public static function changehongbao$taskid,$moneys,$uid,$money,$title,$g $result=dbfactory::getone'select from '.TABLEPRE.'witkeyspace where uid='.$uid; if$g $newbalance=$result'balance'-$money+$moneys; dbfactory::query'update '.TABLEPRE.'witkeyspace s...
60cycleCMS 'select.php' Multiple HTML Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/38637/info 60cycleCMS is prone to multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input. Successful exploits will allow attacker-supplied HTML and script code to run in the...
60cycleCMS - select.php Multiple HTML Injection Vulnerabilities
60cycleCMS - select.php Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/38637/info 60cycleCMS is prone to multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input. Successful exploits will allow attacker-supplied HTML and...
60cycleCMS - 'select.php' Multiple HTML Injection Vulnerabilities
source: https://www.securityfocus.com/bid/38637/info 60cycleCMS is prone to multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input. Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser,...
Sql injection
Multiple SQL injection vulnerabilities in Joker Board aka JBoard 2.0 and earlier allow remote attackers to execute arbitrary SQL commands via 1 core/select.php or 2 the city parameter to topadd.inc.php, reachable through sboard.php...
[ECHO_ADV_55$2006]Phpmybibli <=2.1 Multiple Remote File Inclusion Vulnerability
ECHOADV55$2006 ------------------------------------------------------------------------ ----------------------- ECHOADV55$2006Phpmybibli =2.1 Multiple Remote File Inclusion Vulnerability ------------------------------------------------------------------------ ----------------------- Author : Dedi...