6 matches found
PHP-Nuke 6.x/7.x Public Message SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9615/info It has been reported that the 'public message' feature of PHP-Nuke is vulnerable to an SQL injection vulnerability. The issue is due to improper sanitization of user-defined parameters supplied to the module. As...
Wernhart Guestbook Cross Site Scripting
New eVuln Advisory: Multiple XSS in Wernhart Guestbook Summary: http://evuln.com/vulns/150/summary.html Details: http://evuln.com/vulns/150/description.html -----------Summary----------- eVuln ID: EV0150 Software: Wernhart Guestbook Vendor: Carl A. Wernhart Version: 2001.03.28 Critical Level: low...
[eVuln.com] Multiple XSS inj in Wernhart Guestbook
New eVuln Advisory: Multiple XSS in Wernhart Guestbook Summary: http://evuln.com/vulns/150/summary.html Details: http://evuln.com/vulns/150/description.html -----------Summary----------- eVuln ID: EV0150 Software: Wernhart Guestbook Vendor: Carl A. Wernhart Version: 2001.03.28 Critical Level: low...
[eVuln.com] Multiple XSS in Alguest
New eVuln Advisory: Multiple XSS in Alguest Summary: http://evuln.com/vulns/151/summary.html Details: http://evuln.com/vulns/151/description.html -----------Summary----------- eVuln ID: EV0151 Software: Alguest Vendor: n/a Version: 1.1c-patched Critical Level: low Type: Cross Site Scripting Statu...
[eVuln.com] URL and Title XSS in AxsLinks
New eVuln Advisory: URL and Title XSS in AxsLinks http://evuln.com/vulns/139/summary.html -----------Summary----------- eVuln ID: EV0139 Software: AxsLinks Vendor: AXScripts Version: 0.3 Critical Level: medium Type: Cross Site Scripting Status: Unpatched. No reply from developers PoC: Not availab...
PHP-Nuke 6.x/7.x - Public Message SQL Injection
source: https://www.securityfocus.com/bid/9615/info It has been reported that the 'public message' feature of PHP-Nuke is vulnerable to an SQL injection vulnerability. The issue is due to improper sanitization of user-defined parameters supplied to the module. As a result, an attacker could modif...