3942 matches found
CVE-2008-4655
The CVE-2008-4655 entry describes a SQL injection vulnerability in the TYPO3 Simple survey (simplesurvey) extension for versions 1.7.0 and earlier, allowing remote attackers to execute arbitrary SQL commands via unspecified vectors. The impact is described as enabling partial confidentiality, int...
CVE-2008-4655
SQL injection vulnerability in the Simple survey simplesurvey 1.7.0 and earlier extension for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
TYPO3 Security Bulletin
Several vulnerabilities have been found in the following third party TYPO3 extensions: JobControl dmmjobcontrol, Econda Plugin econda, Frontend Users View feusersview, Mannschaftsliste kiddogplayerlist, M1 Intern m1intern, Simple survey simplesurvey, Page Improvements smpageimprovements Please re...
CVE-2008-4051
Cross-site scripting XSS vulnerability in surveyresults.asp in Smart Survey 1.0 allows remote attackers to inject arbitrary web script or HTML via the sid parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
Cross site scripting
Cross-site scripting XSS vulnerability in surveyresults.asp in Smart Survey 1.0 allows remote attackers to inject arbitrary web script or HTML via the sid parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2008-4051
Cross-site scripting XSS vulnerability in surveyresults.asp in Smart Survey 1.0 allows remote attackers to inject arbitrary web script or HTML via the sid parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2008-4051
CVE-2008-4051 describes a Cross-site scripting (XSS) vulnerability in Smart Survey 1.0, exposed via surveyresults.asp and the sid parameter. The vulnerability allows a remote attacker to inject arbitrary web script/HTML. Connected sources corroborate XSS in Smart Survey 1.0, but none provide publ...
Smart Survey 1.0 - surveyresults.asp Cross-Site Scripting
Smart Survey 1.0 - surveyresults.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/30841/info Smart Survey is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...
Smart Survey 1.0 - 'surveyresults.asp' Cross-Site Scripting
source: https://www.securityfocus.com/bid/30841/info Smart Survey is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context ...
DD-WRT - Site Survey SSID Script Injection
DD-WRT - Site Survey SSID Script Injection source: https://www.securityfocus.com/bid/30573/info DD-WRT is prone to a script-injection vulnerability because it fails to adequately sanitize user-supplied data to the 'Site Survey' section of the administrative web interface. Attackers can exploit th...
DD-WRT - Site Survey SSID Script Injection
source: https://www.securityfocus.com/bid/30573/info DD-WRT is prone to a script-injection vulnerability because it fails to adequately sanitize user-supplied data to the 'Site Survey' section of the administrative web interface. Attackers can exploit this issue to execute arbitrary script code i...
CVE-2008-3310
SQL injection vulnerability in default.asp in Pre Survey Poll allows remote attackers to execute arbitrary SQL commands via the catid parameter...
Sql injection
SQL injection vulnerability in default.asp in Pre Survey Poll allows remote attackers to execute arbitrary SQL commands via the catid parameter...
CVE-2008-3310
SQL injection vulnerability in default.asp in Pre Survey Poll allows remote attackers to execute arbitrary SQL commands via the catid parameter...
CVE-2008-3310
CVE-2008-3310 describes an SQL injection in default.asp of the Pre Survey Poll application, exploitable via the catid parameter to execute arbitrary SQL commands remotely. The vulnerability is borne by the web application’s input handling, enabling an attacker to influence the underlying database...
Pre Survey Poll (default.asp catid) SQL Injection Vulnerability
No description provided by source. PRE SURVEY POLL Remote Sql Injection DreamTurk / sqL Lov3r'Z Crew Co. 2008 Downlod: http://www.preproject.com/poll.asp / Price $28.00 Demo : http://www.preproject.com/poll/default.asp Sql :...
presurveypoll-sql.txt
PRE SURVEY POLL Remote Sql Injection DreamTurk / sqL Lov3r'Z Crew Co. 2008 Downlod: http://www.preproject.com/poll.asp / Price $28.00 Demo : http://www.preproject.com/poll/default.asp Sql : http://localhost/patch/default.asp?catid=1+union+select+0,username+from+users...
Pre Survey Generator - default.asp SQL Injection
Pre Survey Generator - default.asp SQL Injection source: https://www.securityfocus.com/bid/30349/info Pre Survey Generator is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data. A successful exploit may allow an attacker to compromise the...
Pre Survey Poll - catid SQL Injection
Pre Survey Poll - catid SQL Injection PRE SURVEY POLL Remote Sql Injection DreamTurk / sqL Lov3r'Z Crew Co. 2008 Downlod: http://www.preproject.com/poll.asp / Price $28.00 Demo : http://www.preproject.com/poll/default.asp Sql :...
Pre Survey Generator - 'default.asp' SQL Injection
source: https://www.securityfocus.com/bid/30349/info Pre Survey Generator is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data. A successful exploit may allow an attacker to compromise the application, access or modify data, or exploit latent...