1418 matches found
Basic-CMS - 'index.php' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/29771/info Basic-CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
PHP Arena PAFileDB Extreme Edition SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15912/info PAFileDB Extreme Edition is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...
LinksPro 'OrderDirection' Parameter SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/33305/info LinksPro is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
PHPBB 2.0.13 DLMan Pro Module SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13028/info The DLMan Pro mod for phpBB is reportedly affected by an SQL Injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query...
Ixprim CMS 1.2 - Remote Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl INFORMATIONS ============ Affected.scr..: Ixprim 1.2 Poc.ID........: 16061221 Type..........: Blind SQL Injection Risk.level....: Medium Conditions....: loadfile privilege ixp code only Src.download..: www.ixprim-cms.org Poc.link......:...
EDirectoryPro Search_result.ASP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/17912/info EDirectoryPro is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could...
D3Jeeb Pro 3 fastlinks.php catid Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/16853/info D3Jeeb is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation...
PHP-Fusion 4.0/5.0/6.0 Options.php and Viewforum.php SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/15502/info PHP-Fusion is prone to SQL injection vulnerabilities in multiple PHP scripts. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query...
SoftBiz Image Gallery 0 insert_rating.php img_id Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/17339/info Softbiz Image Gallery is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A...
Cyber CMS 'faq.php' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/39698/info Cyber CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
e107 0.7.x 'e107_admin/banner.php' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/39609/info e107 is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
QuickEStore <= 8.2 (insertorder.cfm) Remote SQL Injection Vulnerability
No description provided by source. author:meoconxatvnbrain.net web application:QuickEStore Main Page:www.quickestore.com bug: sql injection at insertorder.cfm?CFID=123&CFTOKEN=1' exploit: http://www.xxx.com/insertorder.cfm?CFID=123&CFTOKEN=1sql query get admin password:...
Oracle Database 8i/9i Multiple Remote Directory Traversal Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/12749/info Oracle Database server is reported prone to multiple directory traversal vulnerabilities that may allow a remote attacker to read, write, or rename arbitrary files with the privileges of the Oracle Database...
PowerPortal 1.3 - Remote SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/11681/info PowerPortal is reported vulnerable to remote SQL injection. This issue is due to a failure of the application to properly validate user-supplied input prior to including it in an SQL query. PowerPortal 1.3 is...
CartWIZ 1.10 AddToCart.ASP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13330/info CartWIZ is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input prior to utilizing the data in an SQL query. Successful exploitatio...
WSN Knowledge Base 1.2 comments.php id Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/15656/info WSN Knowledge Base is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...
EdmoBBS 0.9 - SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/15589/info edmoBBS is prone to SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could...
phpBB 1.4 - Remote SQL Query Manipulation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3142/info phpBB is free, open-source, easy-to-use web forums software. An issue exists in phpBB which allows a remote attacker to manipulate SQL queries in such a way as to gain an administrative account with the service...
Shop-Script CategoryID SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13633/info Shop-Script is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could...
PHP-Nuke Recipe Module 1.3 - 'recipeid' Parameter SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/27955/info The Recipe module for PHP-Nuke is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...