EUVD-2011-5037

Malware in sbrugna...

EUVD-2007-3922

Malware in sbrugna...

Wizz Forum ForumReply.php TopicID Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15410/info Wizz Forum is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful...

Sql injection

SQL injection vulnerability in index.php in BookmarkX script 2007 allows remote attackers to execute arbitrary SQL commands via the topicid parameter in a showtopic action...

Sql injection

SQL injection vulnerability in index.php in MAXdev MDPro MD-Pro 1.0.8x and earlier before 20070720 allows remote attackers to execute arbitrary SQL commands via the topicid parameter in a view action in the Topics module, a different vulnerability than CVE-2006-1676...

PT-2007-5158 · Maxdev · Maxdev Md-Pro

Name of the Vulnerable Software and Affected Versions: MAXdev MDPro MD-Pro versions 1.0.8x and earlier Description: The issue allows remote attackers to execute arbitrary SQL commands via the topicid parameter in a view action in the Topics module. Recommendations: For MAXdev MDPro MD-Pro version...

CVE-2006-1676

SQL injection vulnerability in the display function in the Topics module for MAXdev MDPro MD-Pro 1.0.73 and 1.0.72, and possibly other versions before 1.076, allows remote attackers to execute arbitrary SQL commands via the topicid parameter in a display action, which is not properly handled in...

PT-2006-2670 · Md · Md-Pro

Name of the Vulnerable Software and Affected Versions: MD-Pro versions 1.0.72 through 1.0.73, and possibly other versions prior to 1.076 Description: The issue allows remote attackers to execute arbitrary SQL commands via the topicid parameter in a "display" action. This is due to improper handli...