EUVD-2012-1243

Malware in sbrugna...

CVE-2012-1217

Multiple cross-site scripting XSS vulnerabilities in STHS v2 Web Portal 2.2 allow remote attackers to inject arbitrary web script or HTML via the team parameter to 1 prospects.php, 2 prospect.php, or 3 team.php...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in STHS v2 Web Portal 2.2 allow remote attackers to inject arbitrary web script or HTML via the team parameter to 1 prospects.php, 2 prospect.php, or 3 team.php...

CVE-2012-1217

Multiple cross-site scripting XSS vulnerabilities in STHS v2 Web Portal 2.2 allow remote attackers to inject arbitrary web script or HTML via the team parameter to 1 prospects.php, 2 prospect.php, or 3 team.php...

CVE-2012-1217

CVE-2012-1217 concerns SQL injection in the STHS v2 Web Portal 2.2. Connected sources (OpenVAS tests) indicate the issue affects the application via the ‘team’ parameter, enabling multiple SQLi payloads and data access/modification. The root cause is insufficient input sanitization in the applica...

STHS v2 Web Portal 'team' parameter Multiple SQL Injection Vulnerabilities

STHS v2 Web Portal is prone to multiple SQL-injection vulnerabilities because the application fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access or modify data, or exploit latent...

STHS v2 Web Portal - prospects.php?team SQL Injection

STHS v2 Web Portal - prospects.php?team SQL Injection source: https://www.securityfocus.com/bid/51991/info STHS v2 Web Portal is prone to multiple SQL-injection vulnerabilities because the application fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting...

STHS v2 Web Portal - 'team.php?team' SQL Injection

source: https://www.securityfocus.com/bid/51991/info STHS v2 Web Portal is prone to multiple SQL-injection vulnerabilities because the application fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the...

STHS v2 Web Portal - 'prospects.php?team' SQL Injection

source: https://www.securityfocus.com/bid/51991/info STHS v2 Web Portal is prone to multiple SQL-injection vulnerabilities because the application fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the...

STHS v2 Web Portal 2.2 SQL Injection

================================================= STHS v2 Web Portal 2.2 SQL Injection Vulnerabilty ================================================= 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=1 3 3 3 . 3 7 \ \ || / \ 7 1 | | \ | | / /\ / / \ / \ / \ 1 3 | | | \ \ / / ...