11 matches found
EUVD-2006-0115
Malware in sbrugna...
EUVD-2006-0116
Malware in sbrugna...
Sql injection
SQL injection vulnerability in Timecan CMS allows remote attackers to execute arbitrary SQL commands via the viewID parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Due to the unavailability of the original source, it...
Sql injection
SQL injection vulnerability in mcllogin.asp in Timecan CMS allows remote attackers to execute arbitrary SQL commands via the email parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Due to the unavailability of the origina...
CVE-2006-0108
SQL injection vulnerability in mcllogin.asp in Timecan CMS allows remote attackers to execute arbitrary SQL commands via the email parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Due to the unavailability of the origina...
CVE-2006-0107
SQL injection vulnerability in Timecan CMS allows remote attackers to execute arbitrary SQL commands via the viewID parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Due to the unavailability of the original source, it...
[SA18324] Timecan CMS "viewID" SQL Injection Vulnerability
TITLE: Timecan CMS "viewID" SQL Injection Vulnerability SECUNIA ADVISORY ID: SA18324 VERIFY ADVISORY: http://secunia.com/advisories/18324/ CRITICAL: Moderately critical IMPACT: Manipulation of data WHERE: From remote SOFTWARE: Timecan CMS 3.x http://secunia.com/product/6756/ DESCRIPTION: Preddy h...
CVE-2006-0107
CVE-2006-0107 describes a SQL injection in Timecan CMS exploitable via the viewID parameter, enabling remote SQL execution. Related entry CVE-2006-0108 notes a similar injection in Timecan CMS, via the email parameter in mcl_login.asp. Both entries originate from third-party information with uncl...
CVE-2006-0108
SQL injection vulnerability in mcllogin.asp in Timecan CMS allows remote attackers to execute arbitrary SQL commands via the email parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Due to the unavailability of the origina...
CVE-2006-0108
SQL injection vulnerability in Timecan CMS affects mcl_login.asp, allowing remote attackers to execute arbitrary SQL commands via the email parameter. This is documented with provenance uncertainty (NOTE: provenance unknown; not clear if same issue as CVE-2006-0107). The CVSS-like metrics present...
CVE-2006-0107
SQL injection vulnerability in Timecan CMS allows remote attackers to execute arbitrary SQL commands via the viewID parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Due to the unavailability of the original source, it...