| OSVDB ID | Disclosure Date | Title |
|---|
|
28838
Description:
(Description Provided by CVE) : Directory traversal vulnerability in link.php in NX5Linx 1.0 allows remote attackers to read arbitrary files via the logo parameter.
|
2006-08-26
|
NX5Linx link.php logo Parameter Traversal Arbitrary File Access
|
|
28839
Description:
(Description Provided by CVE) : SQL injection vulnerability in NX5Linx 1.0 allows remote attackers to execute arbitrary SQL commands via the (1) c and (2) l parameters.
|
2006-08-26
|
NX5Linx Multiple Parameter SQL Injection
|
|
28840
Description:
(Description Provided by CVE) : CRLF injection vulnerability in links.php in NX5Linx 1.0 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a CRLF sequence in the url parameter.
|
2006-08-26
|
NX5Linx links.php CRLF Injection HTTP Response Splitting
|
|
28069
Description:
IndexCity contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the list.php script not properly sanitizing user-supplied input to the 'cate_id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-08-21
|
indexcity list.php cate_id Parameter SQL Injection
|
|
28070
Description:
IndexCity contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'url' variable upon submission to the add_url2.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-08-21
|
indexcity add_url2.php url Parameter XSS
|
|
28068
Description:
Guestbook contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'page' form field parameter upon submission to the gbook.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-08-21
|
Doika Guestbook gbook.php page XSS
|
|
28066
Description:
Links Manager contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'admin.php' script not properly sanitizing user-supplied input to the 'nick' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-08-21
|
Links Manager admin.php nick Parameter SQL Injection
|
|
28067
Description:
Links Manager contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the title, description, or keywords variables upon submission to the add_url.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-08-21
|
Links Manager add_url.php Multiple Parameter XSS
|
|
27451
Description:
Unknown / Incomplete
|
2006-07-22
|
MyBulletinBoard (MyBB) avatarurl Tab Symbol XSS
|
|
25276
Description:
Newsadmin contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the readarticle.php script not properly sanitizing user-supplied input to the 'nid' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-05-04
|
Newsadmin readarticle.php nid Parameter SQL Injection
|
|
25167
Description:
Advanced Poll contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the include/call_poll.php script not properly sanitizing user-supplied input to the 'User-Agent' HTTP header field. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-05-01
|
Advanced Poll include/class_poll.php HTTP User-Agent Header SQL Injection
|
|
25168
Description:
(Description Provided by CVE) : include/class_poll.php in Advanced Poll 2.0.4 uses the HTTP_X_FORWARDED_FOR (X-Forwarded-For HTTP header) to identify the IP address of a client, which makes it easier for remote attackers to spoof the source IP and bypass voting restrictions.
|
2006-05-01
|
Advanced Poll include/class_poll.php HTTP_X_FORWARDED_FOR Spoofed IP Voting Restriction Bypass
|
|
25132
Description:
PHP Newsfeed contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the deltables.php script not properly sanitizing user-supplied input to the 'name' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-04-30
|
PHP Newsfeed deltables.php name Parameter SQL Injection
|
|
25133
Description:
PHP Newsfeed contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the manualsubmit.php script not properly sanitizing user-supplied input to the 'select', 'header', 'url', 'source' or 'time' variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-04-30
|
PHP Newsfeed manualsubmit.php Multiple Parameter SQL Injection
|
|
25134
Description:
PHP Newsfeed contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the delete.php script not properly sanitizing user-supplied input to the 'num' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-04-30
|
PHP Newsfeed delete.php num Parameter SQL Injection
|
|
25135
Description:
PHP Newsfeed contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the searchnews.php script not properly sanitizing user-supplied input to the 'tablename' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-04-30
|
PHP Newsfeed searchnews.php tablename Parameter SQL Injection
|
|
25124
Description:
PHP Pro Publish contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'admin/login.php' script not properly sanitizing user-supplied input to the 'email' or 'password' variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-04-30
|
PHP Pro Publish admin/login.php Multiple Parameter SQL Injection
|
|
25125
Description:
PHP Pro Publish contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'cat.php' script not properly sanitizing user-supplied input to the 'catid' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-04-30
|
PHP Pro Publish cat.php catid Parameter SQL Injection
|
|
25126
Description:
PHP Pro Publish contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'search.php' script not properly sanitizing user-supplied input to the 'find_str' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-04-30
|
PHP Pro Publish search.php find_str Parameter SQL Injection
|
|
25127
Description:
PHP Pro Publish contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'art.php' script not properly sanitizing user-supplied input to the 'artid' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-04-30
|
PHP Pro Publish art.php artid Parameter SQL Injection
|
|
25128
Description:
PHP Pro Publish contains a flaw that may allow a malicious user to run arbitrary code. The issue is triggered due to 'set_inc.php' not properly sanitizing settings made by administrative users. That way, arbitrary PHP code may be injected, which will be executed when the file is included, resulting in a loss of integrity.
|
2006-04-30
|
PHP Pro Publish set_inc.php Arbitrary PHP Code Execution
|
|
25163
Description:
HB-NS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the "topic" and "id" variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-04-29
|
HB-NS index.php Multiple Parameter SQL Injection
|
|
25164
Description:
HB-NS contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "poster_name", "poster_email", "poster_homepage", and "message" variables upon submission to the index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-04-29
|
HB-NS index.php Multiple Parameter XSS
|
|
25157
Description:
(Description Provided by CVE) : SQL injection vulnerability in news.php in AZNEWS allows remote attackers to execute arbitrary SQL commands via the ID parameter.
|
2006-04-29
|
AZNEWS news.php ID Parameter SQL Injection
|
|
25156
Description:
(Description Provided by CVE) : SQL injection vulnerability in login.php in Ruperts News allows remote attackers to execute arbitrary SQL commands via the username parameter.
|
2006-04-28
|
Ruperts News Script login.php username Parameter SQL Injection
|
|
24770
Description:
(Description Provided by CVE) : SQL injection vulnerability in authcheck.php in warforge.NEWS 1.0, with magic_quotes_gpc disabled, allows remote attackers to execute arbitrary SQL commands via the (1) authusername and possibly the (2) authpassword cookie.
|
2006-04-14
|
warforge.NEWS authcheck.php SQL Injection
|
|
24622
Description:
RateIt contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the rateit.php script not properly sanitizing user-supplied input to the 'rateit_id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-04-14
|
RateIt rateit.php rateit_id Parameter SQL Injection
|
|
24445
Description:
MWNewsletter contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the unsubscribe.php script not properly sanitizing user-supplied input to the 'user_name' or 'user_email' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-04-06
|
MWNewsletter unsubscribe.php Multiple Parameter SQL Injection
|
|
24446
Description:
MWNewsletter contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'user_name' variable upon submission to the subscribe.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-04-06
|
MWNewsletter subscribe.php user_name Parameter XSS
|
|
24965
Description:
(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in mwguest.php in Manic Web MWGuest 2.1.0 allows remote attackers to inject arbitrary web script or HTML via the homepage parameter.
|
2006-04-06
|
MWGuest mwguest.php homepage Parameter XSS
|
|
24397
Description:
N.T. contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'username' variable upon submission to the index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in an administrator's browser when the "Login Log" page is viewed, leading to a loss of integrity.
|
2006-04-05
|
N.T. index.php username Parameter XSS
|
|
24398
Description:
N.T. contains a flaw that may allow a malicious user to run arbitrary code. The issue is triggered due to ticker.db.php not properly sanitizing unspecified or unknown values. Arbitrary PHP code may be injected, which will be executed when the file is included. It is possible that the flaw may allow the execution of arbitrary commands resulting in a loss of integrity.
|
2006-04-05
|
N.T. ticker.db.php Arbitrary PHP Code Execution
|
|
24454
Description:
MD News contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the admin.php script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-04-05
|
MD News admin.php id Parameter SQL Injection
|
|
24455
Description:
MD News contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered by failing to authenticate requests to the administrative scripts. This flaw may lead to a loss of confidentiality or integrity.
|
2006-04-05
|
MD News Admin Scripts Direct Request Authentication Bypass
|
|
24385
Description:
wpBlog contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'postid' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-04-04
|
wpBlog index.php postid Parameter SQL Injection
|
|
24381
Description:
CzarNews contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'email' variable upon submission to the news.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-04-04
|
CzarNews news.php email Parameter XSS
|
|
24382
Description:
CzarNews contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the cn_auth.php script not properly sanitizing user-supplied input to the 'usern' or 'passw' variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-04-04
|
CzarNews cn_auth.php Multiple Parameter SQL Injection
|
|
24383
Description:
CzarNews contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the news.php script not properly sanitizing user-supplied input to the 's' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-04-04
|
CzarNews news.php s Parameter SQL Injection
|
|
24384
Description:
CzarNews contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the dpost.php script not properly sanitizing user-supplied input to the 'a' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-04-04
|
CzarNews dpost.php a Parameter SQL Injection
|
|
24337
Description:
aWebBB contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'tname' or 'fpost' variables upon submission to the post.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-04-01
|
aWebBB post.php Multiple Parameter XSS
|
