14 matches found
EUVD-2009-2780
Malware in sbrugna...
SoftBiz Dating Script 1.0 featured_photos.php browse Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/18605/info Softbiz Dating Script is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow a...
SoftBiz Dating Script 1.0 news_desc.php id Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/18605/info Softbiz Dating Script is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow a...
SoftBiz Dating Script 1.0 products.php cid Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/18605/info Softbiz Dating Script is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow a...
SoftBiz Dating Script 1.0 index.php cid Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/18605/info Softbiz Dating Script is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow a...
Softbiz Dating Script 1.0 'cat_products.php' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/35896/info Softbiz Dating Script is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...
CVE-2009-2790
SQL injection vulnerability in catproducts.php in SoftBiz Dating Script allows remote attackers to execute arbitrary SQL commands via the cid parameter. NOTE: this might overlap CVE-2006-3271.4...
CVE-2009-2790
SQL injection vulnerability in catproducts.php in SoftBiz Dating Script allows remote attackers to execute arbitrary SQL commands via the cid parameter. NOTE: this might overlap CVE-2006-3271.4...
Sql injection
SQL injection vulnerability in catproducts.php in SoftBiz Dating Script allows remote attackers to execute arbitrary SQL commands via the cid parameter. NOTE: this might overlap CVE-2006-3271.4...
CVE-2009-2790
CVE-2009-2790 is a SQL injection vulnerability in SoftBiz Dating Script, specifically in cat_products.php where the cid parameter can be exploited to execute arbitrary SQL commands. The entry notes possible overlap with CVE-2006-3271 and provides a high-severity risk (CVSS v2 base score 7.5). The...
Softbiz Dating Script SQL Injection
/ SOFTBIZ Dating Script cid Remote SQL Injection Vulnerability Discovered by : MizoZ Contact : [email protected] Date : July 29 2009 Greetings : Moudi , Zuka, All friends / SQL Injection catproducts.php GET : cid : HOST/PATH/catproducts.php?cid=SQL INJ SQL INJ : -1+union+select+1,2,3,4,5--...
Softbiz Dating Script 1.0 - cat_products.php SQL Injection
Softbiz Dating Script 1.0 - catproducts.php SQL Injection source: https://www.securityfocus.com/bid/35896/info Softbiz Dating Script is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could...
Softbiz Dating Script 1.0 - 'cat_products.php' SQL Injection
source: https://www.securityfocus.com/bid/35896/info Softbiz Dating Script is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access o...
SoftBizScripts Dating Script 1.0 - 'products.php' SQL Injection
source: https://www.securityfocus.com/bid/18605/info Softbiz Dating Script is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker to compromise the...