4 matches found
Zyncro Cross Site Scripting / SQL Injection
============================================= INTERNET SECURITY AUDITORS ALERT 2011-003 - Original release date: 13th September 2011 - Last revised: 22nd September 2011 - Discovered by: Ferran Pichel - Severity: 7.5/10 CVSSv2 Base Scored ============================================= I...
Zyncro 3.0.1.20 - Multiple HTML Injection Vulnerabilities
Zyncro 3.0.1.20 - Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/49740/info Zyncro is prone to multiple HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input. Note: To exploit these issues, an attacker must have the ability...
Zyncro 3.0.1.20 - Social Network Message Menu SQL Injection
Zyncro 3.0.1.20 - Social Network Message Menu SQL Injection source: https://www.securityfocus.com/bid/49741/info Zyncro social network is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue cou...
Zyncro 3.0.1.20 - Social Network Message Menu SQL Injection
source: https://www.securityfocus.com/bid/49741/info Zyncro social network is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access o...