WebChat 0.78 (login.php rid) Remote SQL Injection Vulnerability

No description provided by source. webchat 0.78 Class: SQL Injection Published 28/06/2007 Remote: Yes Critical Level : Dangerous Site: http://sourceforge.net/projects/webdev-webchat/ Download: http://downloads.sourceforge.net/webdev-webchat/webchat-078.zip?modtime=1046649600&bigmirror=0 Author:...

CVE-2007-1641

SQL injection vulnerability in index.php in PortailPHP 2.0 allows remote attackers to execute arbitrary SQL commands via the idnews parameter...

CVE-2007-0373

Multiple SQL injection vulnerabilities in Joomla! 1.5.0 Beta allow remote attackers to execute arbitrary SQL commands via 1 the searchword parameter in certain files; the where parameter in 2 plugins/search/content.php or 3 plugins/search/weblinks.php; the text parameter in 4...

Basic Forum 1.1 - edit.asp SQL Injection

Basic Forum 1.1 - edit.asp SQL Injection Title : basicforum v 1.1 edit.asp Remote SQL Injection Vulnerability Author : bolivar Dork : "This script created by www.script.canavari.com" ---------------------------------------------------------------------------...

Recipes Complete Website 1.1.14 Remote SQL Injection Vulnerabilities

Exploit for unknown platform in category web applications ==================================================================== Recipes Complete Website 1.1.14 Remote SQL Injection Vulnerabilities ==================================================================== Coding 4 Fun Recipes Complete...

UPublisher 1.0 (viewarticle.asp) Remote SQL Injection Vulnerability

No description provided by source. Title : UPublisher 1.0 viewarticle.asp Remote SQL Injection Vulnerability Author : ajann Dork : UPublisher Vendor: http://www.superfreaker.com/ http://target/path//viewarticle.asp?ID=SQL Example:...

Sql injection

SQL injection vulnerability in links.php in 4R Linklist 1.0 RC2 and earlier, a module for Woltlab Burning Board, allows remote attackers to execute arbitrary SQL commands via the cat parameter...

phpWebSite 0.10.? (topics.php) Remote SQL Injection Exploit

--------------------------------------------------------------------------- phpWebSite = 0.10.? topics.php Remote SQL Injection Exploit --------------------------------------------------------------------------- Discovered By SnIpErSA Author : SnIpErSA Exploit in Perl :...

CVE-2006-1586

SQL injection vulnerability in adminlogin.asp in ISP of Egypt SiteMan allows remote attackers to execute arbitrary SQL commands via the pass parameter...

CVE-2006-1353

Multiple SQL injection vulnerabilities in ASPPortal 3.1.1 and earlier allow remote attackers to execute arbitrary SQL commands via 1 the downloadid parameter in downloadclick.asp and 2 contentID parameter in news/NewsItem.asp; authenticated administrators can also conduct attacks via 3 userid...

CVE-2006-1012

SQL injection vulnerability in WordPress 1.5.2, and possibly other versions before 2.0, allows remote attackers to execute arbitrary SQL commands via the User-Agent field in an HTTP header for a comment...

Nuke BookMarks 0.6 - Marks.php SQL Injection

Nuke BookMarks 0.6 - Marks.php SQL Injection source: https://www.securityfocus.com/bid/12908/info Nuke Bookmarks is prone to an SQL injection vulnerability. This vulnerability could permit remote attackers to pass malicious input to database queries, resulting in modification of query logic or...

phpMyFAQ < 1.6.0 SQL Injection (deprecated)

Binary data 2675.prm...

WebCalendar login.php webcalendar_session Cookie SQL Injection

The remote version of WebCalendar contains a SQL injection vulnerability that may allow an attacker to execute arbitrary SQL statements against the remote database. An attacker may be able to leverage this issue to, for example, delete arbitrary database tables. %NASLMINLEVEL 70300 C Tenable...

SugarCRM 1.x2.0 Module - record SQL Injection

SugarCRM 1.x2.0 Module - record SQL Injection source: https://www.securityfocus.com/bid/11740/info SugarCRM is reported prone to multiple vulnerabilites arising from insufficient sanitization of user-supplied input. These issues can a remote attacker to carry out cross-site scripting, HTML...

phpBB < 2.0.9 Multiple Vulnerabilities

The remote host is running a version of phpBB older than 2.0.9. There is a flaw in the remote software that may allow anyone to inject arbitrary SQL commands, which may in turn be used to gain administrative access on the remote host or to obtain the MD5 hash of the password of any user. One...

TikiWiki Project 1.8 - tiki-list_blogs.php?offset SQL Injection

TikiWiki Project 1.8 - tiki-listblogs.php?offset SQL Injection source: https://www.securityfocus.com/bid/10100/info Multiple vulnerabilities have been identified in various modules of the application. These vulnerabilities may allow a remote attacker to carry out various attacks such as path...

TikiWiki Project 1.8 - &#039;tiki-user_tasks.php?offset &amp; sort_mode&#039; SQL Injections

source: https://www.securityfocus.com/bid/10100/info Multiple vulnerabilities have been identified in various modules of the application. These vulnerabilities may allow a remote attacker to carry out various attacks such as path disclosure, cross-site scripting, HTML injection, SQL injection,...

TikiWiki Project 1.8 - &#039;tiki-list_file_gallery.php?sort_mode&#039; SQL Injection

source: https://www.securityfocus.com/bid/10100/info Multiple vulnerabilities have been identified in various modules of the application. These vulnerabilities may allow a remote attacker to carry out various attacks such as path disclosure, cross-site scripting, HTML injection, SQL injection,...

TikiWiki Project 1.8 - &#039;tiki-print_article.php?articleId&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/10100/info Multiple vulnerabilities have been identified in various modules of the application. These vulnerabilities may allow a remote attacker to carry out various attacks such as path disclosure, cross-site scripting, HTML injection, SQL injection,...