EUVD-2006-0245

Malware in sbrugna...

CVE-2025-0301

A vulnerability, which was classified as problematic, has been found in code-projects Online Book Shop 1.0. Affected by this issue is some unknown functionality of the file /subcat.php. The manipulation of the argument catnm leads to cross site scripting. The attack may be launched remotely. The...

Code-Projects Online Book Shop 代码注入漏洞

Code-Projects Online Book Shop is a Code-Projects open source online bookstore. A code injection vulnerability exists in Code-Projects Online Book Shop version 1.0, which originates from a cross-site scripting vulnerability in the catnm parameter of the /subcat.php page...

Code-Projects Online Book Shop 注入漏洞

Code-Projects Online Book Shop is a Code-Projects open source online bookstore. An injection vulnerability exists in Code-Projects Online Book Shop version 1.0, which stems from an SQL injection vulnerability in the cat parameter of the /subcat.php page...

CVE-2024-12950

A vulnerability was found in code-projects/projectworlds Travel Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /subcat.php. The manipulation of the argument catid leads to sql injection. The attack may be initiated remotely. The exploi...

CVE-2021-25213

SQL injection vulnerability in SourceCodester Travel Management System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the catid parameter to subcat.php...

SourceCodester Travel Management System SQL注入漏洞

SourceCodester Travel Management System is a software application. An automated system designed to help customers easily check their parcel details as well as help travel companies track parcels online. SourceCodester Travel Management System v 1.0 suffers from a SQL injection vulnerability that...

Classified Ads CMS Quickad SQL Injection Vulnerability

Classified Ads CMS Quickad is a set of PHP based advertising website scripts. A SQL injection vulnerability exists in Classified Ads CMS Quickad version 4.0. A remote attacker can exploit this vulnerability by sending the 'keywords', 'placeid', 'cat', or 'subcat' parameters to the listing URI to...

Sql injection

SQL Injection exists in Classified Ads CMS Quickad 4.0 via the keywords, placeid, cat, or subcat parameter to the listing URI...

CVE-2018-5972

SQL Injection exists in Classified Ads CMS Quickad 4.0 via the keywords, placeid, cat, or subcat parameter to the listing URI...

PHP-Lance 1.52 - subcat SQL Injection

PHP-Lance 1.52 - subcat SQL Injection Exploit Title: PHP-Lance 1.52 - 'subcat' Parameter SQL Injection Dork: N/A Date: 21.08.2017 Vendor Homepage: http://www.scriptdemo.com/ Software Link: http://www.scriptdemo.com/details/phplance/ Demo: http://www.scriptdemo.com/php-lance/ Version: 1.52 Categor...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in pagenumber.inc.php in phpPowerCards 2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 PATHINFO, the 2 archiv parameter, and the 3 subcat parameter...

CVE-2006-2721

Cross-site scripting XSS vulnerability in news.php in VARIOMAT allows remote attackers to inject arbitrary HTML or web script via the subcat parameter. NOTE: this issue might be resultant from SQL injection...

Sql injection

SQL injection vulnerability in news.php in VARIOMAT allows remote attackers to execute arbitrary SQL commands via the subcat parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in news.php in VARIOMAT allows remote attackers to inject arbitrary HTML or web script via the subcat parameter. NOTE: this issue might be resultant from SQL injection...

CVE-2006-2721

Cross-site scripting XSS vulnerability in news.php in VARIOMAT allows remote attackers to inject arbitrary HTML or web script via the subcat parameter. NOTE: this issue might be resultant from SQL injection...

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in GTP iCommerce allows remote attackers to inject arbitrary web script or HTML via the 1 cat and 2 subcat parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...