ContentServ 3.0/3.1/4.0 - 'index.php' SQL Injection

source: https://www.securityfocus.com/bid/15956/info ContentServ is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could allow an attacker to compromise th...

IHTML Merchant Mall - SQL Injection

source: https://www.securityfocus.com/bid/15910/info iHTML Merchant Mall is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise of...

ZixForum 1.12 - forum.asp Multiple SQL Injections

ZixForum 1.12 - forum.asp Multiple SQL Injections source: https://www.securityfocus.com/bid/16406/info ZixForum is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query...

EncapsGallery 1.0 - gallery.php SQL Injection

EncapsGallery 1.0 - gallery.php SQL Injection source: https://www.securityfocus.com/bid/15836/info EncapsGallery is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...

Arab Portal 2.0 - Link.php SQL Injection

Arab Portal 2.0 - Link.php SQL Injection source: https://www.securityfocus.com/bid/15820/info Arab Portal is prone to multiple SQL injection vulnerabilities. These are due to a lack of proper sanitization of user-supplied input before using it in an SQL query. Successful exploitation could result...

CF_Nuke v4.6 Multiple vuln.

CFNuke v4.6 Multiple vuln. Vuln. dicovered by : r0t Date: 6 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/cfnuke-v46-multiple-vuln.html vendor:http://www.mycfnuke.com/ affected version:v4.6 and prior Product Description: CFNuke is a free easy-to-setup & easy-to-use open source...

LocazoList Classifieds v1.03c Vuln.

LocazoList Classifieds v1.03c Vuln. Vuln. dicovered by : r0t Date: 6 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/locazolist-classifieds-v103c-vuln.html vendor:http://locazo.net:81/applications/ affected version:v1.03c and prior Product Description: LocazoList a Free, text based...

Web4Future Portal Solutions - Comentarii.php SQL Injection

Web4Future Portal Solutions - Comentarii.php SQL Injection source: https://www.securityfocus.com/bid/15716/info Portal Solutions is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query...

Blog System v1.2 SQL inj. vuln.

Blog System v1.2 SQL inj. vuln. Vuln. dicovered by : r0t Date: 5 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/blog-system-v12-sql-inj-vuln.html vendor:http://www.netartmedia.net/blogsystem/ affected version:v1.2 and prior Product Description: Blog System allows you to launch and...

Edgewall Software Trac 0.7.1/0.8/0.9 Search Module - SQL Injection

source: https://www.securityfocus.com/bid/15720/info Trac is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could allow an attacker to compromise the...

trac -- search module SQL injection vulnerability

Secunia reports: A vulnerability has been reported in Trac, which can be exploited by malicious people to conduct SQL injection attacks. Some unspecified input passed in the search module isn't properly sanitised before being used in a SQL query. This can be exploited to manipulate SQL queries by...

PHP-Fusion 6.0.109 - messages.php SQL Injection

PHP-Fusion 6.0.109 - messages.php SQL Injection source: https://www.securityfocus.com/bid/15698/info PHP-Fusion is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...

PHPYellowTM 5.33 - 'print_me.php?ckey' SQL Injection

source: https://www.securityfocus.com/bid/15700/info phpYellowTM is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise ...

php2018.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 phpBB 2.0.18 SQL Query problem cXIb8O3.19 Author: Maksymilian Arciemowicz cXIb8O3 Date: 11.11.2005 from securityreason.com TEAM - --- 0.Description --- phpBB is a high powered, fully scalable, and highly customizable Open Source bulletin boar d packag...

DotClear 1.2.11.2.2 - Session.php SQL Injection

DotClear 1.2.11.2.2 - Session.php SQL Injection source: https://www.securityfocus.com/bid/15667/info DotClear is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...

SocketKB 1.1 - index.php SQL Injection

SocketKB 1.1 - index.php SQL Injection source: https://www.securityfocus.com/bid/15650/info SocketKB is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation coul...

O-Kiraku Nikki 1.3 - Nikki.php SQL Injection

O-Kiraku Nikki 1.3 - Nikki.php SQL Injection source: https://www.securityfocus.com/bid/15657/info O-Kiraku Nikki is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...

88Scripts Event Calendar 2.0 - 'index.php' SQL Injection

source: https://www.securityfocus.com/bid/15658/info 88Scripts Event Calendar is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could result in a compromis...

GhostScripter Amazon Shop 5.0 - search.php SQL Injection

GhostScripter Amazon Shop 5.0 - search.php SQL Injection source: https://www.securityfocus.com/bid/15634/info GhostScripter Amazon Shop is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful...

Simple Document Management System 2.0 - list.php?folder_id SQL Injection

Simple Document Management System 2.0 - list.php?folderid SQL Injection source: https://www.securityfocus.com/bid/15596/info Simple Document Management System SDMS is prone to SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied...