EUVD-2006-5990

Malware in sbrugna...

EUVD-2007-4092

Malware in sbrugna...

webevents.uow.edu.au XSS vulnerability

Open Bug Bounty ID: OBB-369650 Description| Value ---|--- Affected Website:| webevents.uow.edu.au Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention...

Sql injection

SQL injection vulnerability in signin.aspx in WebEvents Online Event Registration Template allows remote attackers to execute arbitrary SQL commands via the Password parameter...

CVE-2007-4108

SQL injection vulnerability in signin.aspx in WebEvents Online Event Registration Template allows remote attackers to execute arbitrary SQL commands via the Password parameter...

CVE-2007-4108

CVE-2007-4108 : Concrete details across multiple connected documents show a SQL injection vulnerability in the WebEvents (Online Event Registration Template) application, specifically in the sign_in.aspx component. The vulnerability allows an attacker to manipulate the Password parameter to execu...

CVE-2007-4108

SQL injection vulnerability in signin.aspx in WebEvents Online Event Registration Template allows remote attackers to execute arbitrary SQL commands via the Password parameter...

webevents-sql.txt

A R I A - S E C U R I T Y WebEvents: Online Event Registration Template Username Field SQL Injection Vendor: http://www.codewidgets.com http://target.com/PATH/signin.aspx Username: admin Password: anything' OR 'x'='x Credits: Aria-Security Team http://aria-security.net...

WebEvents: Online Event Registration Template Username Fields SQL INJECTION

A R I A - S E C U R I T Y WebEvents: Online Event Registration Template Username Field SQL Injection Vendor: http://www.codewidgets.com http://target.com/PATH/signin.aspx Username: admin Password: anything' OR 'x'='x Credits: Aria-Security Team http://aria-security.net...

CVE-2006-6007

saveprofile.asp in WebEvents Online Event Registration Template 2.0 and earlier allows remote attackers to change the profiles, passwords, and other information for arbitrary users via a modified UserID parameter...

CVE-2006-6007

saveprofile.asp in WebEvents Online Event Registration Template 2.0 and earlier allows remote attackers to change the profiles, passwords, and other information for arbitrary users via a modified UserID parameter...

CVE-2006-6007

The CVE-2006-6007 issue affects WebEvents (Online Event Registration Template) 2.0 and earlier, specifically save_profile.asp. The underlying flaw allows remote attackers to change profiles, passwords, and other information for arbitrary users by altering the UserID parameter. This describes a us...