Vendor Dictionary: MaxWebPortal.com

MaxWebPortal.com

Short Name:	[None Entered]
Previous Names:	[None Entered]
URL:	[None Entered]
Email:	[None Entered]
Security URL:	[None Entered]
Security Email:	[None Entered]
Knowledge Base:	[None Entered]
Notes:	[No Notes]

Vulnerabilities by Vendor Product

MaxWebPortal.com

MaxWebPortal.com

MaxWebPortal: 1.30; OSVDB ID: 3281 MaxWebPortal search.asp Search Parameter XSS; OSVDB ID: 3907 MaxWebPortal register Avatar File Name XSS; OSVDB ID: 3910 MaxWebPortal dl_showall.asp sub_name Parameter XSS; OSVDB ID: 4933 MaxWebPortal Start New Topic Hidden Form Field Modification; OSVDB ID: 4934 MaxWebPortal Cookie Poisoning Account Compromise; OSVDB ID: 4935 MaxWebPortal Default Database Access; OSVDB ID: 4936 MaxWebPortal password.asp Password Reset; 1.23; OSVDB ID: 3907 MaxWebPortal register Avatar File Name XSS; OSVDB ID: 3910 MaxWebPortal dl_showall.asp sub_name Parameter XSS; 1.31; OSVDB ID: 3907 MaxWebPortal register Avatar File Name XSS; OSVDB ID: 3910 MaxWebPortal dl_showall.asp sub_name Parameter XSS; OSVDB ID: 15225 MaxWebPortal Personal Message SendTo Parameter XSS; 1.33; OSVDB ID: 15197 MaxWebPortal events_functions.asp EVENT_ID Parameter SQL Injection; 1.35; OSVDB ID: 16306 MaxWebPortal article_popular.asp SQL Injection; OSVDB ID: 16307 MaxWebPortal dl_popular.asp SQL Injection; OSVDB ID: 16308 MaxWebPortal links_popular.asp SQL Injection; OSVDB ID: 16309 MaxWebPortal pic_popular.asp SQL Injection; OSVDB ID: 16310 MaxWebPortal article_rate.asp SQL Injection; OSVDB ID: 16311 MaxWebPortal dl_rate.asp SQL Injection; OSVDB ID: 16312 MaxWebPortal links_rate.asp SQL Injection; OSVDB ID: 16313 MaxWebPortal pic_rates.asp SQL Injection; OSVDB ID: 16314 MaxWebPortal article_toprated.asp SQL Injection; OSVDB ID: 16315 MaxWebPortal dl_toprated.asp SQL Injection; OSVDB ID: 16316 MaxWebPortal links_toprated.asp SQL Injection; OSVDB ID: 16317 MaxWebPortal pic_toprated.asp SQL Injection; OSVDB ID: 16318 MaxWebPortal custom_link.asp Multiple Parameter SQL Injection; OSVDB ID: 16847 MaxWebPortal password.asp memKey Parameter SQL Injection; 1.3.5; OSVDB ID: 16501 MaxWebPortal post.asp Multiple Parameter XSS; OSVDB ID: 16502 MaxWebPortal inc_functions.asp fpassword Parameter SQL Injection; OSVDB ID: 16503 MaxWebPortal post_info.asp Multiple Parameter SQL Injection; OSVDB ID: 16504 MaxWebPortal search.asp andor Parameter SQL Injection; OSVDB ID: 16505 MaxWebPortal pop_profile.asp Cookie Variables SQL Injection; OSVDB ID: 16506 MaxWebPortal pm_delete2.asp Multiple Parameter SQL Injection; 2.0; OSVDB ID: 16507 MaxWebPortal inc_top.asp Name Parameter SQL Injection; OSVDB ID: 16508 MaxWebPortal inc_function.asp FORUM_ID Parameter SQL Injection; OSVDB ID: 16509 MaxWebPortal pic_pop_share.asp Multiple Parameter SQL Injection; OSVDB ID: 16510 MaxWebPortal pm_delete2.asp Remove Parameter SQL Injection; OSVDB ID: 16511 MaxWebPortal pm_pop_privatesend_info.asp REPLY_ID Parameter SQL Injection; OSVDB ID: 16512 MaxWebPortal pm_view.asp id Parameter SQL Injection; OSVDB ID: 16513 MaxWebPortal pop_announce_delete.asp A_ID Parameter SQL Injection; OSVDB ID: 16514 MaxWebPortal pop_avatar_delete.asp Multiple Parameter SQL Injection; OSVDB ID: 16515 MaxWebPortal pop_delete.asp ID-Numbers Parameter SQL Injection; OSVDB ID: 16516 MaxWebPortal pop_profile.asp Multiple Parameter SQL Injection; OSVDB ID: 16517 MaxWebPortal privatedelete.asp id Parameter SQL Injection; OSVDB ID: 16518 MaxWebPortal privatesend_info.asp sendto Parameter SQL Injection; OSVDB ID: 16519 MaxWebPortal register.asp Multiple Parameter SQL Injection; OSVDB ID: 16847 MaxWebPortal password.asp memKey Parameter SQL Injection; 1.36; OSVDB ID: 16847 MaxWebPortal password.asp memKey Parameter SQL Injection; 20050418 Next; OSVDB ID: 16847 MaxWebPortal password.asp memKey Parameter SQL Injection

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.