| OSVDB ID | Disclosure Date | Title |
|---|
|
24296
Description:
RedCMS contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'email', 'location', or 'website' fields upon submission to the register.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-03-30
|
RedCMS register.php Multiple Field XSS
|
|
24297
Description:
RedCMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the login.php script not properly sanitizing user-supplied input to the 'username' and 'password' variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-30
|
RedCMS login.php Multiple Parameter SQL Injection
|
|
24298
Description:
RedCMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the profile.php script not properly sanitizing user-supplied input to the 'u' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-30
|
RedCMS profile.php u Parameter SQL Injection
|
|
24299
Description:
RedCMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the register.php script not properly sanitizing user-supplied input to unspecirfied variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-30
|
RedCMS register.php SQL Injection
|
|
24290
Description:
QLnews contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'autorx' and 'newsx' variables upon submission to the news.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-03-30
|
QLnews news.php Multiple Parameter XSS
|
|
24291
Description:
QLnews contains a flaw that may allow a malicious user to execute arbitrary code. The issue is due to the the administrator having permission to add any content to the config.php script. Once modified to contain arbitrary PHP code, an attacker can call the script directly to execute the code.
|
2006-03-30
|
QLnews config.php Arbitrary PHP Code Execution
|
|
24273
Description:
VNews contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the admin/admin.php script not properly sanitizing user-supplied input to the 'loginvar' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-29
|
VNews admin/admin.php loginvar Parameter SQL Injection
|
|
24274
Description:
VNews contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the news.php script not properly sanitizing user-supplied input to the 'news' and 'nom' variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-29
|
VNews news.php Multiple Parameter SQL Injection
|
|
24275
Description:
VNews contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'autorkomentarza' or 'tresckomentarza' variables upon submission to the news.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-03-29
|
VNews news.php Multiple Parameter XSS
|
|
24276
Description:
[V]Book contains a flaw that may allow a remote attacker to execute arbitrary code. The issue occurs because program administrators are allowed to edit the admin/config.php file. By placing custom PHP code and then calling it, the code will be executed with the privileges of the web server.
|
2006-03-29
|
VNews admin/config.php Arbitrary PHP Code Execution
|
|
24270
Description:
[V]Book contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'x' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-29
|
[V]Book index.php x Parameter SQL Injection
|
|
24271
Description:
[V]book contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'autor', 'www', 'temat', or 'tresc' variables upon submission to the index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-03-29
|
[V]Book index.php Multiple Parameter XSS
|
|
24272
Description:
[V]Book contains a flaw that may allow a remote attacker to execute arbitrary code. The issue occurs because program administrators are allowed to edit the config.php file. By placing custom PHP code and then calling it, the code will be executed with the privileges of the web server.
|
2006-03-29
|
[V]Book config.php Arbitrary PHP Code Execution
|
|
24265
Description:
phpNewsManager contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the browse.php script not properly sanitizing user-supplied input to unspecified variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-29
|
phpNewsManager browse.php SQL Injection
|
|
24266
Description:
phpNewsManager contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the category.php script not properly sanitizing user-supplied input to unspecified variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-29
|
phpNewsManager category.php SQL Injection
|
|
24267
Description:
phpNewsManager contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the gallery.php script not properly sanitizing user-supplied input to unspecified variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-29
|
phpNewsManager gallery.php SQL Injection
|
|
24268
Description:
phpNewsManager contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the poll.php script not properly sanitizing user-supplied input to unspecified variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-29
|
phpNewsManager poll.php SQL Injection
|
|
24240
Description:
Null News contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the lostpass.php script not properly sanitizing user-supplied input to the 'user_email' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-28
|
Null News lostpass.php user_email Parameter SQL Injection
|
|
24241
Description:
Null News contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the sub.php script not properly sanitizing user-supplied input to the 'user_email' or 'user_username' variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-28
|
Null News sub.php Multiple Parameter SQL Injection
|
|
24242
Description:
Null News contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the unsub.php script not properly sanitizing user-supplied input to the 'user_email' or 'user_username' variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-28
|
Null News unsub.php Multiple Parameter SQL Injection
|
|
24234
Description:
vCounter contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the vCounter.php script not properly sanitizing user-supplied input to the 'url' variable using '_SERVER['REQUEST_URI']'. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-28
|
vCounter vCounter.php url Parameter SQL Injection
|
|
24229
Description:
Newsletter contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the newsletter.php script not properly sanitizing user-supplied input to the 'newsletteremail' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-28
|
Sourceworkshop newsletter.php newsletteremail Parameter SQL Injection
|
|
24211
Description:
VSNS Lemon contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the functions/final_functions.php script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-27
|
VSNS Lemon functions/final_functions.php id Parameter SQL Injection
|
|
24212
Description:
VSNS Lemon contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'name' variable upon submission to the Add Comment form. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-03-27
|
VSNS Lemon Add Comment name Parameter XSS
|
|
24213
Description:
VSNS Lemon contains a flaw that may allow a remote attacker to gain access to protected content. The issue occurs because the system uses cookies for authentication, but only bases it off the cookie value, not via password comparison.
|
2006-03-27
|
VSNS Lemon Crafted Cookie Authentication Bypass
|
|
23972
Description:
Skull-Splitters Download Counter for Wallpapers contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the count.php script not properly sanitizing user-supplied input to the 'count_fieldname', 'url_fieldname', or 'url' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-17
|
Download Counter for Wallpapers count.php Multiple Parameter SQL Injection
|
|
23941
Description:
Skull-Splitters PHP Guestbook contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'url' variable upon submission to the guestbook.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
|
2006-03-17
|
Skull-Splitters PHP Guestbook guestbook.php url Parameter XSS
|
|
23944
Description:
Maian Support contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the admin/index.php script not properly sanitizing user-supplied input to the 'email' or 'pass' variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-16
|
Maian Support admin/index.php Multiple Parameter SQL Injection
|
|
23945
Description:
Maian Weblog contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the print.php script not properly sanitizing user-supplied input to the 'entry' or 'email' variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-16
|
Maian Weblog print.php Multiple Parameter SQL Injection
|
|
23946
Description:
Maian Weblog contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the mail.php script not properly sanitizing user-supplied input to the 'entry' or 'email' variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-16
|
Maian Weblog mail.php Multiple Parameter SQL Injection
|
|
23947
Description:
Maian Events contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the events.php script not properly sanitizing user-supplied input to the 'month' or 'year' variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-16
|
Maian Events events.php Multiple Parameter SQL Injection
|
|
23879
Description:
DSPoll contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the include/results.php script not properly sanitizing user-supplied input to the 'pollid' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-12
|
DSPoll include/results.php pollid Parameter SQL Injection
|
|
23880
Description:
DSPoll contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the include/topolls.php script not properly sanitizing user-supplied input to the 'pollid' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-12
|
DSPoll include/topolls.php pollid Parameter SQL Injection
|
|
23881
Description:
DSPoll contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the include/pollit.php script not properly sanitizing user-supplied input to the 'pollid' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-12
|
DSPoll include/pollit.php pollid Parameter SQL Injection
|
|
23886
Description:
DSDownload contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the search.php script not properly sanitizing user-supplied input to the 'key' and/or 'category' variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-12
|
DSDownload search.php Multiple Parameter SQL Injection
|
|
23887
Description:
DSDownload contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the downloads.php script not properly sanitizing user-supplied input to the 'key' and/or 'category' variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-12
|
DSDownload downloads.php Multiple Parameter SQL Injection
|
|
23883
Description:
DSNewsletter contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the include/sub.php script not properly sanitizing user-supplied input to the 'email' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-12
|
DSNewsletter include/sub.php email Parameter SQL Injection
|
|
23884
Description:
DSNewsletter contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the include/confirm.php script not properly sanitizing user-supplied input to the 'email' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-12
|
DSNewsletter include/confirm.php email Parameter SQL Injection
|
|
23885
Description:
DSNewsletter contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the include/unconfirm.php script not properly sanitizing user-supplied input to the 'email' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-12
|
DSNewsletter include/unconfirm.php email Parameter SQL Injection
|
|
23896
Description:
DSLogin contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php (or admin/index.php) script not properly sanitizing user-supplied input to the 'log_userid' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.
|
2006-03-12
|
DSLogin index.php log_userid Parameter SQL Injection
|
