235 matches found
Joomla! Component com_products - Multiple SQL Injections
Joomla! Component comproducts - Multiple SQL Injections source: https://www.securityfocus.com/bid/51674/info The 'comproducts' component for Joomla! is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query...
Ultimate Locator - 'radius' SQL Injection
source: https://www.securityfocus.com/bid/51653/info Ultimate Locator is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or...
Joomla! Component Full - 'id' SQL Injection
source: https://www.securityfocus.com/bid/51616/info The Full 'comfull' component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...
Joomla! Component com_car - Multiple SQL Injections
source: https://www.securityfocus.com/bid/51620/info The 'comcar' component for Joomla! is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise th...
Joomla! Component com_contushdvideoshare 1.3 - id SQL Injection
Joomla! Component comcontushdvideoshare 1.3 - id SQL Injection source: https://www.securityfocus.com/bid/51411/info The HD Video Share 'comcontushdvideoshare' component for Joomla! is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using...
SenseSites CommonSense CMS - 'special.php?id' SQL Injection
source: https://www.securityfocus.com/bid/55893/info CommonSense CMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access...
Video Community Portal - userID SQL Injection
Video Community Portal - userID SQL Injection source: https://www.securityfocus.com/bid/51108/info Video Community Portal is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...
InverseFlow Multiple Cross Site Scripting Vulnerabilities
InverseFlow is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data. An attacker could exploit these vulnerabilities to execute arbitrary script code in the context of the affected website. This may allow the attacker to...
Card sharj 1.0 - Multiple SQL Injections
source: https://www.securityfocus.com/bid/49677/info Card sharj is prone to multiple SQL-injection vulnerabilities because the application fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the...
Mambo Component Ahsshop - SQL Injection
Mambo Component Ahsshop - SQL Injection source: https://www.securityfocus.com/bid/49419/info The Mambo CMS AHS Shop component is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow ...
Code Widgets Online Job Application - 'admin.asp' Multiple SQL Injections
source: https://www.securityfocus.com/bid/49207/info Code Widgets Online Job Application is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise t...
BlueSoft Social Networking CMS - SQL Injection
BlueSoft Social Networking CMS - SQL Injection source: https://www.securityfocus.com/bid/48707/info BlueSoft Social Networking CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could...
WebCalendar 1.2.3 Multiple Cross Site Scripting Vulnerabilities
WebCalendar 1.2.3 Multiple Cross Site Scripting Vulnerabilities. Webapps exploit for php platform source: http://www.securityfocus.com/bid/48546/info WebCalendar is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may...
Joomla! Component CCBoard - SQL Injection / Arbitrary File Upload
source: https://www.securityfocus.com/bid/48108/info http://www.noticeboardpro.com/notice-board-pro-copyright.htmlJoomla CCBoard is prone to an SQL-injection vulnerability and an arbitrary-file-upload vulnerability because it fails to sanitize user-supplied data. Exploiting these issues could all...
LDAP Account Manager 3.4.0 - 'selfserviceSaveOk' Cross-Site Scripting
source: https://www.securityfocus.com/bid/47674/info LDAP Account Manager is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in t...
Plogger 1.0 RC1 - 'gallery_name' Cross-Site Scripting
source: https://www.securityfocus.com/bid/47329/info Plogger is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...
Sahana Disaster Management System 'sel' Parameter SQL Injection Vulnerability
Sahana Disaster Management System is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyrig...
Injader CMS 2.4.4 Cross Site Scripting / SQL Injection
================================== Vulnerability ID: HTB22743 Reference: http://www.htbridge.ch/advisory/sqlinjectionininjadercms1.html Product: Injader CMS Vendor: http://www.injader.com/ http://www.injader.com/ Vulnerable Version: 2.4.4 Vendor Notification: 07 December 2010 Vulnerability Type:...
Joomla! Component Jeformcr - id SQL Injection
Joomla! Component Jeformcr - id SQL Injection source: https://www.securityfocus.com/bid/45329/info Joomla Jeformcr is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker...
Joomla! Component com_storedirectory - id SQL Injection
Joomla! Component comstoredirectory - id SQL Injection source: https://www.securityfocus.com/bid/45094/info Joomla! Store Directory is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could...