EUVD-2006-1692

Malware in sbrugna...

lojge.ohq.trade XSS vulnerability

Vulnerable URL: http://lojge.ohq.trade/unsubscribe.php?M=Guitch" Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated Google Pagerank| 0 VIP website status:| No...

onetwotrade.com XSS vulnerability

Vulnerable URL: https://www.onetwotrade.com/unsubscribe.php?email=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 130728 Google Pageran...

michaelsutter.com XSS vulnerability

Vulnerable URL: https://www.michaelsutter.com/php/Unsubscribe.php?email=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 1150273 Google...

parkertools.co.uk XSS vulnerability

Vulnerable URL: http://www.parkertools.co.uk/Unsubscribe.php?email=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 2858948 Google...

projectmanana.org XSS vulnerability

Vulnerable URL: http://www.projectmanana.org/unsubscribe.php?Email=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 26.07.2017 Latest check for patch:| 26.07.2017 10:24 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa...

jeffersoncompanies.com XSS vulnerability

Vulnerable URL: http://jeffersoncompanies.com/marketing/unsubscribe.php?email=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 2037865...

success.bz XSS vulnerability

Vulnerable URL: http://www.success.bz/actions/[email protected]=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 26.07.2017 Latest check for patch:| 26.07.2017 10:24 GMT Vulnerability type:| XSS Vulnerability status:|...

thebigchoice.com XSS vulnerability

Vulnerable URL: http://www.thebigchoice.com/unsubscribe.php?email=%22%3E%3CsVg/OnLOaD=alert%28%22XSSPOSED%22%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 623490 Google...

Sql injection

SQL injection vulnerability in MWNewsletter 1.0.0b allows remote attackers to execute arbitrary SQL commands via the username parameter to unsubscribe.php...

Sql injection

Multiple SQL injection vulnerabilities in MWNewsletter 1.0.0b allow remote attackers to execute arbitrary SQL commands via the 1 useremail parameter to a unsubscribe.php or b subscribe.php; or the 2 username parameter to subscribe.php. NOTE: the provenance of this information is unknown; the...

CVE-2006-1692

CVE-2006-1692 concerns MWNewsletter 1.0.0b, where multiple SQL injection flaws are exposed via input parameters. Specifically, unsanitized user_email (in unsubscribe.php and subscribe.php) and user_name (in subscribe.php) allow remote attackers to inject arbitrary SQL commands, enabling potential...