9 matches found
EUVD-2007-4092
Malware in sbrugna...
Sql injection
SQL injection vulnerability in signin.aspx in WebEvents Online Event Registration Template allows remote attackers to execute arbitrary SQL commands via the Password parameter...
CVE-2007-4109
SQL injection vulnerability in signin.aspx in WebStore Online Store Application Template allows remote attackers to execute arbitrary SQL commands via the Password parameter...
CVE-2007-4110
SQL injection vulnerability in signin.aspx in Message Board / Threaded Discussion Forum Application Template allows remote attackers to execute arbitrary SQL commands via the Password parameter...
Sql injection
SQL injection vulnerability in signin.aspx in Message Board / Threaded Discussion Forum Application Template allows remote attackers to execute arbitrary SQL commands via the Password parameter...
CVE-2007-4108
SQL injection vulnerability in signin.aspx in WebEvents Online Event Registration Template allows remote attackers to execute arbitrary SQL commands via the Password parameter...
CVE-2007-4110
SQL injection vulnerability in signin.aspx in Message Board / Threaded Discussion Forum Application Template allows remote attackers to execute arbitrary SQL commands via the Password parameter...
CVE-2007-4109
The CVE-2007-4109 entry describes an SQL injection in sign_in.aspx of WebStore (Online Store Application Template), where an attacker can manipulate the Password parameter to execute arbitrary SQL. The connected NVD entry confirms a remote, unauthenticated SQL injection with network attack vector...
CVE-2007-4110
The CVE-2007-4110 entry describes an SQL injection in sign_in.aspx of a Message Board/Threaded Discussion Forum Application Template, allowing remote execution of arbitrary SQL via the Password parameter. The issue is caused by unsafely incorporated user input into SQL commands, exposing partial ...