CVE-2008-6940

CVE-2008-6940 affects TurnkeyForms Web Hosting Directory. The vulnerability stems from insufficient access control that allows remote attackers to access sensitive data stored under the web root, specifically enabling retrieval of a database backup via a direct request to admin/backup/db. The con...

TurnkeyForms Yahoo Answers Clone - questiondetail.php Cross-Site Scripting

TurnkeyForms Yahoo Answers Clone - questiondetail.php Cross-Site Scripting source: https://www.securityfocus.com/bid/42480/info TurnkeyForms Yahoo Answers Clone is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage thi...

TurnkeyForms Yahoo Answers Clone - 'questiondetail.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/42480/info TurnkeyForms Yahoo Answers Clone is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...

CVE-2008-6723

TurnkeyForms Entertainment Portal 2.0 allows remote attackers to bypass authentication and gain administrative access by setting the adminLogged cookie to Administrator...

CVE-2008-6723

CVE-2008-6723 affects TurnkeyForms Entertainment Portal 2.0. The vulnerability allows remote attackers to bypass authentication and gain administrative access by setting the adminLogged cookie to Administrator. Impact is administrative access with partial confidentiality, integrity, and availabil...

CVE-2008-6723

TurnkeyForms Entertainment Portal 2.0 allows remote attackers to bypass authentication and gain administrative access by setting the adminLogged cookie to Administrator...

TurnkeyForms Local Classifieds 'Site_Admin/admin.php' Authentication Bypass Vulnerability

TurnkeyForms Local Classifieds is prone to an authentication-bypass vulnerability. Attackers can exploit this issue to gain administrative access to the affected application. OpenVAS Vulnerability Test $Id: TurnkeyFormsclassifiedsauthenticationbypass.nasl 5770 2017-03-29 14:34:03Z cfi $...

TurnkeyForms Local Classifieds Authentication Bypass Vulnerability (Mar 2009) - Active Check

TurnkeyForms Local Classifieds is prone to an authentication bypass vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

CVE-2008-6349

SQL injection vulnerability in surveyresultstext.php in TurnkeyForms Business Survey Pro 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter...

Sql injection

SQL injection vulnerability in listtest.php in TurnkeyForms Local Classifieds allows remote attackers to execute arbitrary SQL commands via the r parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in listtest.php in TurnkeyForms Local Classifieds allows remote attackers to inject arbitrary web script or HTML via the r parameter...

Sql injection

SQL injection vulnerability in surveyresultstext.php in TurnkeyForms Business Survey Pro 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter...

CVE-2008-6350

SQL injection vulnerability in listtest.php in TurnkeyForms Local Classifieds allows remote attackers to execute arbitrary SQL commands via the r parameter...

CVE-2008-6351

Cross-site scripting XSS vulnerability in listtest.php in TurnkeyForms Local Classifieds allows remote attackers to inject arbitrary web script or HTML via the r parameter...

CVE-2008-6349

CVE-2008-6349 : SQL injection in survey_results_text.php of TurnkeyForms Business Survey Pro 1.0 via the id parameter. Remote attacker could execute arbitrary SQL commands. Affected: TurnkeyForms Business Survey Pro 1.0 (survey_results_text.php). Root cause: improper handling of user-supplied id ...

CVE-2008-6351

Summary (CVE-2008-6351) : A cross-site scripting (XSS) vulnerability affects TurnkeyForms Local Classifieds in the file listtest.php , exploitable via the r parameter. The issue allows remote attackers to inject arbitrary web script or HTML. The provided documents do not specify affected versions...

CVE-2008-6349

SQL injection vulnerability in surveyresultstext.php in TurnkeyForms Business Survey Pro 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter...

CVE-2008-6351

Cross-site scripting XSS vulnerability in listtest.php in TurnkeyForms Local Classifieds allows remote attackers to inject arbitrary web script or HTML via the r parameter...

CVE-2008-6350

SQL injection vulnerability in listtest.php in TurnkeyForms Local Classifieds allows remote attackers to execute arbitrary SQL commands via the r parameter...

CVE-2008-6350

CVE-2008-6350 defines an SQL injection vulnerability in listtest.php of TurnkeyForms Local Classifieds. The flaw allows remote attackers to inject SQL via the r parameter and execute arbitrary commands, with a CVSS2 base score of 7.5 (HIGH) and network/low complexity conditions. Affected componen...