Lucene search
K

141 matches found

Tenable Nessus
Tenable Nessus
added 2009/06/01 12:0 a.m.34 views

JVideo! Component for Joomla! 'user_id' Parameter SQLi

The version of the JVideo! component for Joomla! running on the remote host is affected by a SQL injection vulnerability in the models/user.php script due to improper sanitization of user-supplied input to the 'userid' parameter before using it to construct database queries in the getUsername...

7.5CVSS5.9AI score0.01063EPSS
Exploits1References2
Exploit DB
Exploit DB
added 2009/02/23 12:0 a.m.24 views

Joomla! / Mambo Component gigCalendar 1.0 - 'banddetails.php' SQL Injection

source: https://www.securityfocus.com/bid/33859/info The gigCalendar component for Joomla! and Mambo is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2009/01/26 12:0 a.m.10 views

Lootan - login.asp SQL Injection

Lootan - login.asp SQL Injection source: https://www.securityfocus.com/bid/33439/info Lootan is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

Exploits0
exploitpack
exploitpack
added 2009/01/16 12:0 a.m.27 views

Blog Manager - categoryId Cross-Site Scripting

Blog Manager - categoryId Cross-Site Scripting source: https://www.securityfocus.com/bid/33314/info DMXReady Blog Manager is prone to a cross-site scripting vulnerability and an SQL-injection vulnerability because the application fails to sufficiently sanitize user-supplied input. Exploiting thes...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2009/01/15 12:0 a.m.11 views

w3bcms - adminindex.php SQL Injection

w3bcms - adminindex.php SQL Injection source: https://www.securityfocus.com/bid/33310/info The 'w3bcms' application is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacke...

8.6AI score
Exploits0
exploitpack
exploitpack
added 2008/12/29 12:0 a.m.13 views

Madrese-Portal - haber.asp SQL Injection

Madrese-Portal - haber.asp SQL Injection source: https://www.securityfocus.com/bid/33045/info Madrese-Portal is prone to an SQL-injection vulnerability because it fails to properly sanitize user-supplied input. Attackers may exploit this issue to compromise the application, access or modify data,...

Exploits0
exploitpack
exploitpack
added 2008/11/29 12:0 a.m.13 views

Ocean12 (Multiple Products) - Admin_ID SQL Injection

Ocean12 Multiple Products - AdminID SQL Injection source: https://www.securityfocus.com/bid/32527/info Multiple Ocean12 products are prone to an SQL-injection vulnerability because they fail to sufficiently sanitize user-supplied data. A successful exploit may allow an attacker to compromise the...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2008/10/31 12:0 a.m.15 views

SpitFire Photo Pro - pages.php SQL Injection

SpitFire Photo Pro - pages.php SQL Injection source: https://www.securityfocus.com/bid/32012/info SpitFire Photo Pro is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attack...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2008/09/23 12:0 a.m.55 views

InterTech WCMS - 'etemplate.php' SQL Injection

source: https://www.securityfocus.com/bid/31350/info InterTech Web Content Management System WCMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise th...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2008/09/03 12:0 a.m.20 views

eliteCMS 1.0 - 'page' SQL Injection

source: https://www.securityfocus.com/bid/30990/info eliteCMS is prone to an SQL-injection vulnerability because it fails to properly sanitize user-supplied input. Attackers may exploit this issue to compromise the application, access or modify data, or exploit latent vulnerabilities in the...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/08/13 12:0 a.m.13 views

PHP Realty - dpage.php SQL Injection

PHP Realty - dpage.php SQL Injection source: https://www.securityfocus.com/bid/30678/info PHP Realty is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2008/06/18 12:0 a.m.28 views

KEIL Software PhotoKorn 1.542 - 'index.php' SQL Injection

source: https://www.securityfocus.com/bid/29808/info KEIL Software's photokorn is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data. A successful exploit may allow an attacker to compromise the application, access or modify data, or exploit laten...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/05/26 12:0 a.m.11 views

PHPFix 2.0 - fixbrowse.php?kind SQL Injection

PHPFix 2.0 - fixbrowse.php?kind SQL Injection source: https://www.securityfocus.com/bid/29371/info phpFix is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacke...

0.5AI score
Exploits0
exploitpack
exploitpack
added 2008/05/26 12:0 a.m.19 views

Excuse Online - pwd.asp SQL Injection

Excuse Online - pwd.asp SQL Injection source: https://www.securityfocus.com/bid/29370/info Excuse Online is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2008/05/10 12:0 a.m.18 views

OtherLogic - 'vocourse.php' SQL Injection

source: https://www.securityfocus.com/bid/29139/info OtherLogic is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2008/04/17 12:0 a.m.23 views

Cobalt 2.0 - 'adminler.asp' SQL Injection

source: https://www.securityfocus.com/bid/28831/info CoBaLT is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied input. A successful exploit may allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities ...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2008/02/25 12:0 a.m.20 views

Joomla! / Mambo Component com_publication - 'pid' SQL Injection

source: https://www.securityfocus.com/bid/27970/info The Joomla! and Mambo 'compublication' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromis...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/02/19 12:0 a.m.11 views

Joomla! Mambo Component com_profile - oid SQL Injection

Joomla! Mambo Component comprofile - oid SQL Injection source: https://www.securityfocus.com/bid/27851/info The Joomla! and Mambo 'comprofile' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2008/02/19 12:0 a.m.27 views

Joomla! / Mambo Component com_profile - 'oid' SQL Injection

source: https://www.securityfocus.com/bid/27851/info The Joomla! and Mambo 'comprofile' component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise th...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2008/02/19 12:0 a.m.19 views

XOOPS 'vacatures' Module - 'cid' SQL Injection

source: https://www.securityfocus.com/bid/27889/info XOOPS 'vacatures' module is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, acces...

7.4AI score
Exploits0
Rows per page
Query Builder