49 matches found
SiteEngine 5.x Multiple Remote Vulnerabilities
Due to incorrect use of intval function, leading to the logic of inspection parameters can be bypassed, resulting in SQL injection vulnerability. -=0x01=- SQL injection Vulnerability vul code like this: if intval $id requireonce $siteengineroot."lib/rss.php" ; $sql = "SELECT url FROM...
SiteEngine 5.x Multiple Remote Vulnerabilities
No description provided by source. SiteEngine 5.x Multiple Remote Vulnerabilities Due to incorrect use of intval function, leading to the logic of inspection parameters can be bypassed, resulting in SQL injection vulnerability. -=0x01=- SQL injection Vulnerability vul code like this: if intval $i...
SiteEngine 5.x - Multiple Vulnerabilities
SiteEngine 5.x - Multiple Vulnerabilities SiteEngine 5.x Multiple Remote Vulnerabilities Due to incorrect use of intval function, leading to the logic of inspection parameters can be bypassed, resulting in SQL injection vulnerability. -=0x01=- SQL injection Vulnerability vul code like this: if...
UC Gateway Investment SiteEngine 5.0 - api.php Open Redirection
UC Gateway Investment SiteEngine 5.0 - api.php Open Redirection source: https://www.securityfocus.com/bid/31888/info SiteEngine is prone to a remote URI-redirection vulnerability because the application fails to properly sanitize user-supplied input. A successful exploit may aid in phishing-style...
UC Gateway Investment SiteEngine 5.0 - announcements.php SQL Injection
UC Gateway Investment SiteEngine 5.0 - announcements.php SQL Injection source: https://www.securityfocus.com/bid/31889/info SiteEngine is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue cou...
SiteEngine 5.x - Multiple Vulnerabilities
SiteEngine 5.x Multiple Remote Vulnerabilities Due to incorrect use of intval function, leading to the logic of inspection parameters can be bypassed, resulting in SQL injection vulnerability. -=0x01=- SQL injection Vulnerability vul code like this: if intval $id requireonce...
SiteEngine 5.x Multiple Remote Vulnerabilities
Exploit for unknown platform in category web applications ============================================== SiteEngine 5.x Multiple Remote Vulnerabilities ============================================== Due to incorrect use of intval function, leading to the logic of inspection parameters can be...
UC Gateway Investment SiteEngine 5.0 - 'api.php' Open Redirection
source: https://www.securityfocus.com/bid/31888/info SiteEngine is prone to a remote URI-redirection vulnerability because the application fails to properly sanitize user-supplied input. A successful exploit may aid in phishing-style attacks. SiteEngine 5.0 is vulnerable; other versions may also ...
UC Gateway Investment SiteEngine 5.0 - 'announcements.php' SQL Injection
source: https://www.securityfocus.com/bid/31889/info SiteEngine is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...