14 matches found
EUVD-2009-2780
Malware in sbrugna...
SoftBiz Dating Script 1.0 news_desc.php id Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/18605/info Softbiz Dating Script is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow a...
SoftBiz Dating Script 1.0 featured_photos.php browse Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/18605/info Softbiz Dating Script is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow a...
SoftBiz Dating Script 1.0 products.php cid Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/18605/info Softbiz Dating Script is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow a...
Softbiz Dating Script 1.0 'cat_products.php' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/35896/info Softbiz Dating Script is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...
SoftBiz Dating Script 1.0 index.php cid Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/18605/info Softbiz Dating Script is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow a...
CVE-2009-2790
SQL injection vulnerability in catproducts.php in SoftBiz Dating Script allows remote attackers to execute arbitrary SQL commands via the cid parameter. NOTE: this might overlap CVE-2006-3271.4...
CVE-2009-2790
SQL injection vulnerability in catproducts.php in SoftBiz Dating Script allows remote attackers to execute arbitrary SQL commands via the cid parameter. NOTE: this might overlap CVE-2006-3271.4...
Sql injection
SQL injection vulnerability in catproducts.php in SoftBiz Dating Script allows remote attackers to execute arbitrary SQL commands via the cid parameter. NOTE: this might overlap CVE-2006-3271.4...
CVE-2009-2790
CVE-2009-2790 is a SQL injection vulnerability in SoftBiz Dating Script, specifically in cat_products.php where the cid parameter can be exploited to execute arbitrary SQL commands. The entry notes possible overlap with CVE-2006-3271 and provides a high-severity risk (CVSS v2 base score 7.5). The...
Softbiz Dating Script SQL Injection
/ SOFTBIZ Dating Script cid Remote SQL Injection Vulnerability Discovered by : MizoZ Contact : [email protected] Date : July 29 2009 Greetings : Moudi , Zuka, All friends / SQL Injection catproducts.php GET : cid : HOST/PATH/catproducts.php?cid=SQL INJ SQL INJ : -1+union+select+1,2,3,4,5--...
Softbiz Dating Script 1.0 - cat_products.php SQL Injection
Softbiz Dating Script 1.0 - catproducts.php SQL Injection source: https://www.securityfocus.com/bid/35896/info Softbiz Dating Script is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could...
Softbiz Dating Script 1.0 - 'cat_products.php' SQL Injection
source: https://www.securityfocus.com/bid/35896/info Softbiz Dating Script is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access o...
SoftBizScripts Dating Script 1.0 - 'products.php' SQL Injection
source: https://www.securityfocus.com/bid/18605/info Softbiz Dating Script is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker to compromise the...