32 matches found
EUVD-2008-6122
Malware in sbrugna...
EUVD-2008-6121
Malware in sbrugna...
EUVD-2008-6120
Malware in sbrugna...
sepcity.com Cross Site Scripting vulnerability OBB-3119523
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2008-6157
SepCity Classified Ads stores the admin password in cleartext in data/classifieds.mdb, which allows context-dependent attackers to obtain sensitive information...
Information disclosure
SepCity Classified Ads stores the admin password in cleartext in data/classifieds.mdb, which allows context-dependent attackers to obtain sensitive information...
CVE-2008-6157
SepCity Classified Ads stores the admin password in cleartext in data/classifieds.mdb, which allows context-dependent attackers to obtain sensitive information...
CVE-2008-6157
SepCity Classified Ads stores the admin password in cleartext in data/classifieds.mdb, enabling context-dependent attackers to obtain sensitive information. The issue is documented across several sources (NVD, CVE records, PT-2009-1632) with no concrete vendor/version details provided and no expl...
PT-2009-1632 · Sepcity · Sepcity Classified Ads
Name of the Vulnerable Software and Affected Versions: SepCity Classified Ads affected versions not specified Description: The issue allows context-dependent attackers to obtain sensitive information because the admin password is stored in cleartext in the data/classifieds.mdb file...
CVE-2008-6151
SQL injection vulnerability in shpdetails.asp in SepCity Shopping Mall allows remote attackers to execute arbitrary SQL commands via the ID parameter...
CVE-2008-6152
SQL injection vulnerability in deptdisplay.asp in SepCity Faculty Portal allows remote attackers to execute arbitrary SQL commands via the ID parameter. NOTE: this was originally reported for Lawyer Portal, which does not have a deptdisplay.asp file...
CVE-2008-6150
SQL injection vulnerability in classdis.asp in SepCity Classified Ads allows remote attackers to execute arbitrary SQL commands via the ID parameter...
Sql injection
SQL injection vulnerability in classdis.asp in SepCity Classified Ads allows remote attackers to execute arbitrary SQL commands via the ID parameter...
Sql injection
SQL injection vulnerability in deptdisplay.asp in SepCity Faculty Portal allows remote attackers to execute arbitrary SQL commands via the ID parameter. NOTE: this was originally reported for Lawyer Portal, which does not have a deptdisplay.asp file...
Sql injection
SQL injection vulnerability in shpdetails.asp in SepCity Shopping Mall allows remote attackers to execute arbitrary SQL commands via the ID parameter...
CVE-2008-6152
SQL injection vulnerability in deptdisplay.asp in SepCity Faculty Portal allows remote attackers to execute arbitrary SQL commands via the ID parameter. NOTE: this was originally reported for Lawyer Portal, which does not have a deptdisplay.asp file...
CVE-2008-6151
SQL injection vulnerability in shpdetails.asp in SepCity Shopping Mall allows remote attackers to execute arbitrary SQL commands via the ID parameter...
CVE-2008-6152
CVE-2008-6152 is a SQL injection vulnerability in deptdisplay.asp of the SepCity Faculty Portal, exploitable via the ID parameter to allow remote execution of arbitrary SQL commands. The issue is attributed to unsanitized input in deptdisplay.asp (note: initial report mentions Lawyer Portal, whic...
CVE-2008-6151
CVE-2008-6151 describes a SQL injection vulnerability in shpdetails.asp of SepCity Shopping Mall, allowing remote attackers to execute arbitrary SQL commands via the ID parameter. The NVD entry (and related records) note the vulnerability’s impact as partial confidentiality, integrity, and availa...
CVE-2008-6150
CVE-2008-6150 describes an SQL injection in classdis.asp of SepCity Classified Ads, exploitable via the ID parameter. The vulnerability allows remote attackers to execute arbitrary SQL commands and may impact authentication and data integrity. Affected component: classdis.asp in SepCity Classifie...