141 matches found
Joomla! and Mambo faq Component - 'catid' Parameter SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/27822/info The Joomla! and Mambo 'faq' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow a...
Full PHP Emlak Script - 'landsee.php' SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/30962/info Full PHP Emlak Script is prone to an SQL-injection vulnerability because it fails to properly sanitize user-supplied input. Attackers may exploit this issue to compromise the application, access or modify data,...
PostNuke 0.75/0.76 DL-viewdownload.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/14636/info PostNuke is prone to an SQL injection vulnerability. This issue is due to a lack of sufficient sanitization of user-supplied input. Successful exploitation could result in a compromise of the application,...
AlstraSoft Video Share Enterprise 4.x Multiple Input Validation Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/25019/info AlstraSoft Video Share Enterprise is affected by multiple input-validation vulnerabilities. These issues include multiple cross-site scripting vulnerabilities and multiple SQL-injection vulnerabilities...
eazyCMS - 'index.php' SQL Injection
source: https://www.securityfocus.com/bid/66769/info eazyCMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit may allow an attacker to compromise the application, access or modify data, or...
BoastMachine - blog SQL Injection
BoastMachine - blog SQL Injection source: https://www.securityfocus.com/bid/64278/info BoastMachine is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise...
NeoBill 0.9-alpha - language Local File Inclusion
NeoBill 0.9-alpha - language Local File Inclusion source: https://www.securityfocus.com/bid/64112/info NeoBill is prone to multiple security vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker can exploit these vulnerabilities to compromise the application,...
dBlog CMS - 'm' SQL Injection
source: https://www.securityfocus.com/bid/62146/info dBlog CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify dat...
PHP Address Book - addressbookregisterchecklogin.php?Username SQL Injection
PHP Address Book - addressbookregisterchecklogin.php?Username SQL Injection source: https://www.securityfocus.com/bid/58911/info PHP Address Book is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input. A successful exploit may allow an...
Mibew Messenger 1.6.4 - 'threadid' SQL Injection
source: https://www.securityfocus.com/bid/54857/info Mibew Messenger is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit may allow an attacker to compromise the application, access or modify...
Open Constructor - 'confirm.php?q' Cross-Site Scripting
source: https://www.securityfocus.com/bid/54822/info Open Constructor is prone to multiple input-validation vulnerabilities because it fails to properly sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to execute arbitrary script code, steal cookie-based...
eNdonesia - 'cid' SQL Injection
source: https://www.securityfocus.com/bid/54741/info eNdonesia is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit may allow an attacker to compromise the application, access or modify data, ...
NetArt Media Jobs Portal - SQL Injection
source: https://www.securityfocus.com/bid/54026/info NetArt Media Jobs Portal is prone to multiple HTML-injection vulnerabilities and an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting these issues may allow an attacker to compromise the...
Joomla! Component com_alphacontent - 'limitstart' SQL Injection
source: https://www.securityfocus.com/bid/53942/info The Alphacontent component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
Uiga FanClub - 'p' SQL Injection
source: https://www.securityfocus.com/bid/53295/info Uiga FanClub is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data. A successful exploit may allow an attacker to compromise the application, access or modify data, or exploit latent...
Bioly 1.3 - '/index.php' Cross-Site Scripting / SQL Injection
source: https://www.securityfocus.com/bid/53018/info Bioly is prone to multiple SQL-injection and cross-site scripting vulnerabilities. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit...
e107 1.0 - view SQL Injection
e107 1.0 - view SQL Injection source: https://www.securityfocus.com/bid/52821/info e107 is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit may allow an attacker to compromise the application...
ClassifiedsGeek.com Vacation Packages - 'listing_search' SQL Injection
source: https://www.securityfocus.com/bid/52637/info Vacation Packages is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit may allow an attacker to compromise the application, access or modif...
JPM Article Script 6 - 'page2' SQL Injection
source: https://www.securityfocus.com/bid/52528/info JPM Article Script 6 is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit may allow an attacker to compromise the application, access or...
webERP 4.3.8 - reportwriterReportMaker.php?reportid SQL Injection
webERP 4.3.8 - reportwriterReportMaker.php?reportid SQL Injection source: https://www.securityfocus.com/bid/50713/info webERP is prone to information-disclosure, SQL-injection, and cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. An attacker may...