ezContents 2.0.3 shownews.php GLOBALS[admin_home] Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/19776/info ezContents is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote fi...

CVE-2009-4861

Cross-site scripting XSS vulnerability in shownews.php in SupportPRO SupportDesk 3.0 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...

Cross site scripting

Cross-site scripting XSS vulnerability in shownews.php in SupportPRO SupportDesk 3.0 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...

CVE-2009-4861

Cross-site scripting XSS vulnerability in shownews.php in SupportPRO SupportDesk 3.0 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...

CVE-2009-4861

CVE-2009-4861 : A cross-site scripting (XSS) vulnerability in SupportPRO SupportDesk 3.0’s shownews.php allows injecting arbitrary script/HTML via PATH_INFO. Affected component is the shownews.php handling in SupportDesk 3.0; root cause is unvalidated PATH_INFO input leading to script injection. ...

ellistonSPORT SQL Injection

============================================================================== o ellistonSPORT Multiple SQL Injection Vulnerability Software : ellistonSPORT Vendor : http://ellistonsport.com/ Demo : http://demo.ellistonsport.com/index.php Author : NoGe Contact : nogedotcodeatgmaildotcom Blog :...

netBIOS (showNews.php newsid) SQL Injection Vulnerability

No description provided by source. Viva IslaM Viva IslaM rEm0te sql injction VulnErability &nbs...

netBIOS (showNews.php newsid) SQL Injection Vulnerability

Exploit for unknown platform in category web applications ========================================================= netBIOS showNews.php newsid SQL Injection Vulnerability ========================================================= Viva IslaM Viva IslaM rEm0te sql injction VulnErability Net bios...

Sql injection

SQL injection vulnerability in shownews.php in phpns 1.1 allows remote attackers to execute arbitrary SQL commands via the id parameter...

CVE-2007-4628

SQL injection vulnerability in shownews.php in phpns 1.1 allows remote attackers to execute arbitrary SQL commands via the id parameter...

CVE-2007-4628

An SQL injection vulnerability affects phpns 1.1 (shownews.php) where the id parameter is unsafely used, allowing remote attackers to execute arbitrary SQL commands. This allows impact to data confidentiality, integrity, and availability as per CVSS 2.0 (AV:N/AC:L/Au:N/C:P/I:P/A:P). No remediatio...

CVE-2006-6778

Cross-site scripting XSS vulnerability in shownews.php in TimberWolf 1.2.2 allows remote attackers to inject arbitrary web script or HTML via the nid parameter...

TimberWolf 1.2.2 - shownews.php Cross-Site Scripting

TimberWolf 1.2.2 - shownews.php Cross-Site Scripting source: https://www.securityfocus.com/bid/21733/info TimberWolf is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary scrip...