1303 matches found
Raritan Power IQ SQL Injection Vulnerability
Raritan Power IQ SQL Injection Vulnerability SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:raritan:poweriq"; ifdescription...
phpList 2.10.17 Remote SQL Injection and XSS Vulnerability
No description provided by source. phpList 2.10.17 Remote SQL Injection and XSS Vulnerability Vendor: phpList Ltd Product web page: http://www.phplist.com Affected version: 2.10.17 Summary: phplist is the world's most popular open source email campaign manager. phplist is free to download, instal...
WordPress 1.2.1/1.2.2 link-categories.php cat_id Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/11984/info Wordpress is reported vulnerable to multiple cross-site scripting, HTML injection, and SQL injection vulnerabilities. These issues are due to a lack of proper sanitization of user-supplied data. The cross-site...
WordPress 1.2.1/1.2.2 link-manager.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/11984/info Wordpress is reported vulnerable to multiple cross-site scripting, HTML injection, and SQL injection vulnerabilities. These issues are due to a lack of proper sanitization of user-supplied data. The cross-site...
Joomla Component PBBooking 1.0.4_3 Multiple Blind SQL Injection
No description provided by source. PBBooking 1.0.43 Joomla Component Multiple Blind SQL Injection Name PBBooking Vendor http://sourceforge.net/projects/pbbooking/ Versions Affected 1.0.43 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmai...
MaxWebPortal 1.3 custom_link.asp Multiple Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/13466/info MaxWebPortal is reportedly affected by multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries...
DUware DUforum 3.0/3.1 forums.asp iFor Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/14035/info DUforum is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker to...
MercuryBoard 1.1 INDEX.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12503/info MercuryBoard is affected by an SQL injection vulnerability. This issue is due to the application failing to properly sanitize user-supplied input before being used in SQL queries. The vulnerability is reported ...
1WebCalendar 4.0 mainCal.cfm SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/17193/info 1WebCalendar is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. A successful exploi...
MyBulletinBoard RC4 polls.php polloptions Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/14553/info MyBulletinBoard is prone to multiple SQL injection vulnerability. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful...
XMB Forum 1.8 forumdisplay.php Multiple Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/9726/info XMB Forum has been reported prone to multiple cross-site scripting, HTML injection and SQL injection vulnerabilities. The issues present themselves due to insufficient sanitization of remote user supplied data. ...
UBBCentral UBB.threads 5.5.1/6.x notifymod.php Number Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/14052/info UBB.Threads is prone to multiple SQL injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker...
SurfControl SuperScout WebFilter for windows 2000 SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5859/info SurfControl SuperScout WebFilter Reports Server is prone to SQL injection attacks. This issue is due to insufficient input validation on the part of some of the reports files, which are implemented as .dlls. As ...
UBBCentral UBB.threads 5.5.1/6.x grabnext.php posted Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/14052/info UBB.Threads is prone to multiple SQL injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker...
ManageEngine Firewall Analyzer 5 - CSRF/XSS Vulnerability
No description provided by source. Written By Michael Brooks Special thanks to str0ke! Product: ManageEngine Firewall Analyzer 5 - XSRF and XSS Vulerable version: Build Version : 5.0.0 Build Number : 5000 Build Date : Apr25 homepage: http://fwanalyzer.com/ This is live exploit code against the...
WebCortex WebStores2000 SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7766/info This vulnerability is reportedly caused by a lack of sufficient sanitization of user-supplied data contained in URI parameters supplied to WebStores2000. Successful exploitation may allow for modification of the...
Joomla (com_jbpublishdownfp) SQL Injection Vulnerability
No description provided by source. ...BEGIN ADVISORY... !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! TITLE: Joomla comjbpublishdownfp SQL Injection Vulnerability LANGUAGE: PHP DORK: N/A RESEARCHER: B-HUNT3|2 CONTACT: bhunt3ratnospamgmaildotnospamcom TESTED ON:...
OneWorldStore OWProductDetail.ASP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13183/info OneWorldStore is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation could...
Ingenium Learning Management System 5.1/6.1 Reversible Password Hash Weakness
No description provided by source. source: http://www.securityfocus.com/bid/5970/info Ingenium Learning Management System uses a weak algorithm to hash user and administrative credentials. Passwords may be trivially obtained by reversing the password hash. An attacker must be able to gain...
XMB Forum 1.8 BBcode align Tag XSS
No description provided by source. source: http://www.securityfocus.com/bid/9726/info XMB Forum has been reported prone to multiple cross-site scripting, HTML injection and SQL injection vulnerabilities. The issues present themselves due to insufficient sanitization of remote user supplied data. ...