235 matches found
Joomla! Component Club Manager - 'cm_id' SQL Injection
source: https://www.securityfocus.com/bid/43821/info The Club Manager component for Joomla is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
ASP Nuke SQL Injection Vulnerability
Exploit for asp platform in category web applications ==================================== ASP Nuke SQL Injection Vulnerability ==================================== Title : ASP Nuke Sql Injection Vulnerability Affected Version : AspNuke 0.80 Discovery : www.abysssec.com Vendor :...
ASP Nuke - SQL Injection
''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub11-asp-nuke-sql-injection-vulnerability/ ''' Abysssec Inc Public Advisory Title : ASP Nuke Sql Injection Vulnerability Affected Version :...
AneCMS 1.01.3 - registernext SQL Injection
AneCMS 1.01.3 - registernext SQL Injection source: https://www.securityfocus.com/bid/42615/info AneCMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromi...
SnowFlake CMS 0.9.5 Beta - 'uid' SQL Injection
source: https://www.securityfocus.com/bid/41791/info SnowFlake CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...
BlaherTech Placeto CMS - Username SQL Injection
BlaherTech Placeto CMS - Username SQL Injection source: https://www.securityfocus.com/bid/41190/info BlaherTech Placeto CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...
Joomla! Component Gallery XML 1.1 - SQL Injection / Local File Inclusion
source: https://www.securityfocus.com/bid/40964/info The Gallery XML Joomla! component is prone to an SQL-injection vulnerability and a local file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker can exploit these vulnerabilities to compromise the...
vBulletin Multiple Cross Site Scripting Vulnerabilities
vBulletin is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the...
CommodityRentals CD Rental Software - index.php SQL Injection
CommodityRentals CD Rental Software - index.php SQL Injection source: https://www.securityfocus.com/bid/38184/info CommodityRentals CD Rental Software is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploitin...
FlatPress Multiple Cross site Scripting Vulnerabilities
This host is running FlatPress and is prone to multiple Cross Site Scripting vulnerabilities. OpenVAS Vulnerability Test $Id: gbflatpressmultxssvuln.nasl 5306 2017-02-16 09:00:16Z teissa $ FlatPress Multiple Cross site Scripting Vulnerabilities Authors: Madhuri D Copyright: Copyright c 2010...
DataLife Engine 8.3 - engineinchelp.php?config[langs] Remote File Inclusion
DataLife Engine 8.3 - engineinchelp.php?configlangs Remote File Inclusion source: https://www.securityfocus.com/bid/37851/info Datalife Engine is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow a...
Freewebscriptz Online Games Login - Multiple SQL Injections
Freewebscriptz Online Games Login - Multiple SQL Injections source: https://www.securityfocus.com/bid/41267/info Free Web Scriptâ??z Online Games is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query...
Joomla! 'com_mygallery' Component 'cid' Parameter SQL Injection Vulnerability
No description provided by source. Bugtraq ID: 37121 Class: Input Validation Error Published: Feb 21 2008 12:00AM Updated: Nov 24 2009 10:15PM Credit: S@BUN Vulnerable: Joomla commygallery 0 The 'commygallery' component for Joomla! is prone to an SQL-injection vulnerability because it fails to...
Joomla! Component com_mygallery - cid SQL Injection
Joomla! Component commygallery - cid SQL Injection Bugtraq ID: 37121 Class: Input Validation Error Published: Feb 21 2008 12:00AM Updated: Nov 24 2009 10:15PM Credit: S@BUN Vulnerable: Joomla commygallery 0 The 'commygallery' component for Joomla! is prone to an SQL-injection vulnerability becaus...
RunCMS - forum SQL Injection
RunCMS - forum SQL Injection source: https://www.securityfocus.com/bid/36816/info RunCMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
OpenDocMan 1.2.5 - department.php Cross-Site Scripting
OpenDocMan 1.2.5 - department.php Cross-Site Scripting source: https://www.securityfocus.com/bid/36777/info OpenDocMan is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues...
Meeting Room Booking System SQL Injection Vulnerability
This host is installed with Meeting Room Booking System and is prone to SQL Injection vulnerability. OpenVAS Vulnerability Test $Id: gbmrbssqlinjvuln.nasl 4869 2016-12-29 11:01:45Z teissa $ Meeting Room Booking System SQL Injection Vulnerability Authors: Nikita MR Copyright: Copyright c 2009...
MKPortal 1.x (Multiple Modules) - Cross-Site Scripting
MKPortal 1.x Multiple Modules - Cross-Site Scripting source: https://www.securityfocus.com/bid/36216/info Multiple modules of MKPortal are prone to cross-site scripting vulnerabilities because the software fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript cod...
Paypal Shopping Cart Script - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/43471/info Paypal Shopping Cart Script is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal...
CS-Cart 2.0.5 - reward_points.post.php SQL Injection
CS-Cart 2.0.5 - rewardpoints.post.php SQL Injection source: https://www.securityfocus.com/bid/35936/info CS-Cart is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker t...