EUVD-2007-6621

Malware in sbrugna...

EUVD-2007-2466

Malware in sbrugna...

Weaver E-cology wui/theme/ecology7/page/login. jsp parameter templateId time blind

No description provided by source...

e-cology 时间盲注（templateId参数）

1、应用：泛微e-cology2、缺陷文件：/page/maint/login/Page.jsp3、expurl:http://localhost/page/maint/login/Page.jsp?templateId=18 4、验证：sqlmap.py -u "http://localhost/page/maint/login/Page.jsp?templateId=18" --technique T --dbms "Microsoft SQL Server"...

Sql injection

Multiple SQL injection vulnerabilities in CuteFlow 2.10.0 allow remote authenticated users to execute arbitrary SQL commands via the 1 listid parameter to pages/editmailingliststep1.php, the 2 userid parameter to pages/edituser.php, the 3 fieldid parameter to pages/editfield.php, and the 4...

CVE-2008-1632

Multiple SQL injection vulnerabilities in CuteFlow 2.10.0 allow remote authenticated users to execute arbitrary SQL commands via the 1 listid parameter to pages/editmailingliststep1.php, the 2 userid parameter to pages/edituser.php, the 3 fieldid parameter to pages/editfield.php, and the 4...

Sql injection

SQL injection vulnerability in contentcss.php in the TinyMCE module for CMS Made Simple 1.2.2 and earlier allows remote attackers to execute arbitrary SQL commands via the templateid parameter...

CMSmadesimple-sql.txt

1 Summary Affected software CMS Made Simple 1.05 Vendor URL http://www.cmsmadesimple.org/ Severity High 2 Vulnerability Description The affected software is vulnerable to SQL injection via the templateid parameter of the stylesheet.php page the value of this parameter is used directly in an SQL...

CVE-2007-2473

SQL injection vulnerability in stylesheet.php in CMS Made Simple 1.0.5 and earlier allows remote attackers to execute arbitrary SQL commands via the templateid parameter...