27 matches found
EUVD-2008-6770
Malware in sbrugna...
EUVD-2009-4354
Malware in sbrugna...
EUVD-2008-6769
Malware in sbrugna...
EUVD-2008-6186
Malware in sbrugna...
Sql injection
SQL injection vulnerability in hoteltiempolibreext.php in Venalsur Booking Centre Booking System for Hotels Group, when magicquotesgpc is enabled, allows remote attackers to execute arbitrary SQL commands via the NoticiaID parameter and other unspecified vectors...
CVE-2009-4386
SQL injection vulnerability in hoteltiempolibreext.php in Venalsur Booking Centre Booking System for Hotels Group, when magicquotesgpc is enabled, allows remote attackers to execute arbitrary SQL commands via the NoticiaID parameter and other unspecified vectors...
CVE-2009-4386
SQL injection vulnerability in hoteltiempolibreext.php in Venalsur Booking Centre Booking System for Hotels Group, when magicquotesgpc is enabled, allows remote attackers to execute arbitrary SQL commands via the NoticiaID parameter and other unspecified vectors...
CVE-2009-4386
CVE-2009-4386 is a SQL injection vulnerability in the Venalsur Booking Centre Booking System for Hotels Group, specifically in hotel_tiempolibre_ext.php. When magic_quotes_gpc is enabled, remote attackers can manipulate the NoticiaID parameter and other vectors to execute arbitrary SQL commands. ...
CVE-2008-6809
SQL injection vulnerability in hotelhabitaciones.php in Venalsur Booking Centre Booking System for Hotels Group 2.01 allows remote attackers to execute arbitrary SQL commands via the HotelID parameter...
Sql injection
SQL injection vulnerability in hotelhabitaciones.php in Venalsur Booking Centre Booking System for Hotels Group 2.01 allows remote attackers to execute arbitrary SQL commands via the HotelID parameter...
CVE-2008-6809
SQL injection vulnerability in hotelhabitaciones.php in Venalsur Booking Centre Booking System for Hotels Group 2.01 allows remote attackers to execute arbitrary SQL commands via the HotelID parameter...
CVE-2008-6810
CVE-2008-6810 affects Venalsur Booking Centre Booking System for Hotels Group 2.01. The vulnerability is multiple SQL injection in admin/checklogin.php, exploitable via the myusername (username) and password parameters, enabling remote SQL command execution as reported. The issue is documented wi...
CVE-2008-6810
Multiple SQL injection vulnerabilities in admin/checklogin.php in Venalsur Booking Centre Booking System for Hotels Group 2.01 allow remote attackers to execute arbitrary SQL commands via the 1 myusername username and 2 password parameters. NOTE: some of these details are obtained from third part...
CVE-2008-6809
CVE-2008-6809 affects Venalsur Booking Centre Booking System for Hotels Group 2.01. The vulnerability is in hotel_habitaciones.php, exploitable via the HotelID parameter to perform SQL injection and execute arbitrary SQL commands remotely. Per NVD, CVSSv2 base score is 7.5 (HIGH) with network att...
CVE-2008-6215
Cross-site scripting XSS vulnerability in cadenaofertasext.php in Venalsur Booking Centre Booking System for Hotels Group allows remote attackers to inject arbitrary web script or HTML via the OfertaID parameter...
CVE-2008-6216
SQL injection vulnerability in cadenaofertasext.php in Venalsur Booking Centre Booking System for Hotels Group allows remote attackers to execute arbitrary SQL commands via the OfertaID parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in cadenaofertasext.php in Venalsur Booking Centre Booking System for Hotels Group allows remote attackers to inject arbitrary web script or HTML via the OfertaID parameter...
Sql injection
SQL injection vulnerability in cadenaofertasext.php in Venalsur Booking Centre Booking System for Hotels Group allows remote attackers to execute arbitrary SQL commands via the OfertaID parameter...
CVE-2008-6215
Cross-site scripting XSS vulnerability in cadenaofertasext.php in Venalsur Booking Centre Booking System for Hotels Group allows remote attackers to inject arbitrary web script or HTML via the OfertaID parameter...
CVE-2008-6216
SQL injection vulnerability in cadenaofertasext.php in Venalsur Booking Centre Booking System for Hotels Group allows remote attackers to execute arbitrary SQL commands via the OfertaID parameter...