7 matches found
EUVD-2017-1504
Malware in sbrugna...
CVE-2017-1000236
I, Librarian version =4.6 & 4.7 is vulnerable to Reflected Cross-Site Scripting in the temp.php resulting in an attacker being able to inject malicious client side scripting which will be executed in the browser of users if they visit the manipulated site...
Cross site scripting
I, Librarian version =4.6 & 4.7 is vulnerable to Reflected Cross-Site Scripting in the temp.php resulting in an attacker being able to inject malicious client side scripting which will be executed in the browser of users if they visit the manipulated site...
CVE-2017-1000236
I, Librarian version =4.6 & 4.7 is vulnerable to Reflected Cross-Site Scripting in the temp.php resulting in an attacker being able to inject malicious client side scripting which will be executed in the browser of users if they visit the manipulated site...
CVE-2017-1000236
I, Librarian version =4.6 & 4.7 is vulnerable to Reflected Cross-Site Scripting in the temp.php resulting in an attacker being able to inject malicious client side scripting which will be executed in the browser of users if they visit the manipulated site...
faceofiran.co XSS vulnerability
Vulnerable URL: http://faceofiran.co/en/user/temp.php?name=The three-day tour round Borujerdtype=1"';--=1parvaz=16011 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 18118336 VIP...
Sql injection
Multiple SQL injection vulnerabilities in AlstraSoft Affiliate Network Pro allow remote attackers to execute arbitrary SQL commands via 1 the pgmid parameter in an uploadProducts action to merchants/index.php and possibly 2 the rowid parameter to merchants/temp.php...