CVE-2021-46377

There is a front-end sql injection vulnerability in cszcms 1.2.9 via cszcms/controllers/Member.phpviewUser...

CVE-2021-46377

There is a front-end sql injection vulnerability in cszcms 1.2.9 via cszcms/controllers/Member.phpviewUser...

swarovski.com XSS vulnerability

Open Bug Bounty ID: OBB-388375 Description| Value ---|--- Affected Website:| swarovski.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Sql injection

Multiple SQL injection vulnerabilities in index.php in dotProject 2.1.2 allow 1 remote authenticated users to execute arbitrary SQL commands via the tab parameter in a projects action, and 2 remote authenticated administrators to execute arbitrary SQL commands via the userid parameter in a viewus...

CVE-2007-1899

Multiple SQL injection vulnerabilities in myWebland myBloggie 2.1.6 allow remote attackers to execute arbitrary SQL commands via 1 the userid parameter in a viewuser action to index.php, and allow remote authenticated administrators to execute arbitrary SQL commands via 2 the postid parameter in ...

CVE-2007-3003

Multiple SQL injection vulnerabilities in myBloggie 2.1.6 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 catid or 2 year parameter to index.php in a viewuser action, different vectors than CVE-2005-1500 and CVE-2005-4225...

Sql injection

Multiple SQL injection vulnerabilities in myBloggie 2.1.6 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 catid or 2 year parameter to index.php in a viewuser action, different vectors than CVE-2005-1500 and CVE-2005-4225...

Cross site scripting

Cross-site scripting XSS vulnerability in HitHost 1.0.0 allows remote attackers to inject arbitrary web script or HTML via 1 the user parameter in deleteuser.php and 2 the hits parameter in viewuser.php...