ACG News 1.0 index.php Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/25466/info ACG News is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in SQL queries. Exploiting these issues could allow an attacker to...

CVE-2009-4317

Cross-site scripting XSS vulnerability in index.php in ScriptsEz Ez Cart allows remote attackers to inject arbitrary web script or HTML via the sid parameter in a showcat action...

CVE-2008-4144

SQL injection vulnerability in index.php in ACG-ScriptShop E-Gold Script Shop allows remote attackers to execute arbitrary SQL commands via the cid parameter in a showcat action...

CVE-2008-3954

SQL injection vulnerability in index.php in AlstraSoft Forum Pay Per Post Exchange allows remote attackers to execute arbitrary SQL commands via the cat parameter in a showcat action...

CVE-2008-3954

SQL injection vulnerability in index.php in AlstraSoft Forum Pay Per Post Exchange allows remote attackers to execute arbitrary SQL commands via the cat parameter in a showcat action...

Sql injection

SQL injection vulnerability in eStoreAff 0.1 allows remote attackers to execute arbitrary SQL commands via the cid parameter in a showcat action to index.php...

CVE-2008-3484

SQL injection vulnerability in eStoreAff 0.1 allows remote attackers to execute arbitrary SQL commands via the cid parameter in a showcat action to index.php...

saphpshowcat-sql.txt

Discovery by :- Sw33t h4cK3r powered by : saphp ---------------------------- Exploit : http://Example.com/story/showcat.php?forumid=SQL...

CVE-2005-3958

SQL injection vulnerability in index.php in Entergal MX 2.0 allows remote attackers to execute arbitrary SQL commands via the 1 idcat parameter in a showcat action and 2 the action parameter...