27 matches found
EUVD-2004-2012
Malware in sbrugna...
EUVD-2005-1183
Malware in sbrugna...
EUVD-2022-47722
Malicious code in bioql PyPI...
CVE-2022-44790
Interspire Email Marketer through 6.5.1 allows SQL Injection via the surveys module. An unauthenticated attacker could successfully perform an attack to extract potentially sensitive information from the database if the survey id exists...
CVE-2022-44790
Interspire Email Marketer through 6.5.1 allows SQL Injection via the surveys module. An unauthenticated attacker could successfully perform an attack to extract potentially sensitive information from the database if the survey id exists...
Sql injection
Interspire Email Marketer through 6.5.1 allows SQL Injection via the surveys module. An unauthenticated attacker could successfully perform an attack to extract potentially sensitive information from the database if the survey id exists...
CVE-2022-44790
Interspire Email Marketer through 6.5.1 allows SQL Injection via the surveys module. An unauthenticated attacker could successfully perform an attack to extract potentially sensitive information from the database if the survey id exists...
PT-2022-27313 · Interspire · Interspire Email Marketer
Name of the Vulnerable Software and Affected Versions: Interspire Email Marketer versions 6.5.1 and earlier Description: The issue allows SQL Injection via the surveys module. An unauthenticated attacker could successfully perform an attack to extract potentially sensitive information from the...
CVE-2022-44790
Interspire Email Marketer through 6.5.1 allows SQL Injection via the surveys module. An unauthenticated attacker could successfully perform an attack to extract potentially sensitive information from the database if the survey id exists...
CVE-2022-44790
CVE-2022-44790 concerns Interspire Email Marketer (up to version 6.5.1) where the vulnerability is a SQL Injection in the surveys module . An unauthenticated attacker could extract potentially sensitive data from the database if the survey ID exists. The root cause is improper input handling lead...
Dragonfly CMS 9.0.6 .1 Surveys Module Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/16784/info Dragonfly is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the...
PHP-Nuke 7.6 Surveys Module HTTP Response Splitting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13201/info PHP-Nuke is prone to a HTTP response splitting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. A remote attacker may exploit this vulnerability to...
PHP-Nuke 8.0 Surveys Module SQL Injection
Title : PHP-Nuke 8.0 mod Surveys SQL Injection Vulnerability Author : KedAns-Dz E-mail : [email protected] Home : HMD/AM 30008/04300 - Algeria -00213555248701 Twitter page : twitter.com/kedans platform : php Impact : Remote SQL Injection Tested on : Windows XP sp3 FR Note : BAC 2011 Enchallah Me ...
MDPro Surveys Module SQL Injection Vulnerability
This host is installed with MDPro and is prone to SQL Injection vulnerability. OpenVAS Vulnerability Test $Id: gbmdprosqlinjvuln.nasl 4869 2016-12-29 11:01:45Z teissa $ MDPro Surveys Module SQL Injection Vulnerability Authors: Nikita MR Copyright: Copyright c 2009 Greenbone Networks GmbH,...
MD-Pro 1.083.x Blind SQL Injection
!Informationschema: Product: MDPro v 1.083.x site: www.maxdev.com Vuln: Blind $QL Injection pollID Author: XaDoS thanks to S3rg3770 dork: inurl:modules.php?op= "pollID" "Powered By MDPro" Vuln: PollID http://www.site.com/MDPropath/modules.php?name=Surveys&op=results&pollID=SQL or...
modulesSQL.txt
By: Mr-X Email: [email protected] Subject: modules nameSectionsSQL Injection example:- /modules.php?name=Surveys&op=results&pollID=8&mode=&order=&thold=SQL...
CVE-2006-1033
Multiple cross-site scripting XSS vulnerabilities in Dragonfly CMS before 9.0.6.1 allow remote attackers to inject arbitrary web script or HTML via 1 uname, 2 error, 3 profile or 4 the username filed parameter to the a YourAccount module, 5 catid, 6 sid, 7 Story Text or 8 Extended text text field...
CVE-2006-1033
Multiple cross-site scripting XSS vulnerabilities in Dragonfly CMS before 9.0.6.1 allow remote attackers to inject arbitrary web script or HTML via 1 uname, 2 error, 3 profile or 4 the username filed parameter to the a YourAccount module, 5 catid, 6 sid, 7 Story Text or 8 Extended text text field...
Dragonfly CMS 9.0.6.1 Surveys Module - Multiple Cross-Site Scripting Vulnerabilities
Dragonfly CMS 9.0.6.1 Surveys Module - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/16784/info Dragonfly is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these...
Dragonfly CMS 9.0.6.1 Surveys Module - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/16784/info Dragonfly is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting user in...