[CLOSE] OSVDB ID : 51989 - Disclosed: 2009-02-09

Description:

A Better Member-Based ASP Photo Gallery contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the view.asp script not properly sanitizing user-supplied input to the entry parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 83667 - Disclosed: 2012-07-10

Description:

A Page Flip Book Plugin for WordPress contains a flaw that may allow a remote attacker to execute arbitrary commands or code. This issue is triggered when input passed to the wp-content/plugins/wppageflip/pageflipbook.php script from index.php is not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied to the 'pageflipbook_language' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands or code that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.

[CLOSE] OSVDB ID : 73540 - Disclosed: 2011-05-26

Description:

A Really Simple Chat (ARSC) contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'base/admin/edit_layout.php' script not properly sanitizing user-supplied input to the 'arsc_layout_id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 73541 - Disclosed: 2011-05-26

Description:

A Really Simple Chat (ARSC) contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'base/admin/edit_room.php' script not properly sanitizing user-supplied input to the 'arsc_room' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 73539 - Disclosed: 2011-05-26

Description:

A Really Simple Chat (ARSC) contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'base/admin/edit_user.php' script not properly sanitizing user-supplied input to the 'arsc_user' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 73538 - Disclosed: 2011-06-02

Description:

A Really Simple Chat (ARSC) contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'arsc_message' parameter upon submission to the 'chat/base/admin/login.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 73542 - Disclosed: 2011-05-26

Description:

A Really Simple Chat (ARSC) contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'arsc_link' parameter upon submission to the 'dereferer.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 86069 - Disclosed: 2011-09-09

Description:

A to Z Category Listing Plugin for WordPress contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the post_retrive_ajax.php script not properly sanitizing user-supplied input to the 'R' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 53466 - Disclosed: 2008-06-26

Description:

(Description Provided by CVE) : A+ PHP Scripts News Management System (NMS) allows remote attackers to bypass authentication and gain administrator privileges by setting the mobsuser and mobspass cookies to 1.

[CLOSE] OSVDB ID : 30418 - Disclosed: 2006-11-14

Description:

A+ Store E-Commerce contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'username' and 'passwd' variables upon submission to the 'account_login.asp' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 30417 - Disclosed: 2006-11-14

Description:

A+ Store E-Commerce contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'browse.asp' script not properly sanitizing user-supplied input to the 'ParentID' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 54522 - Disclosed: 2009-05-11

Description:

(Description Provided by CVE) : Application Access Server (A-A-S) 2.0.48 stores (1) passwords and (2) the port keyword in cleartext in aas.ini, which allows local users to obtain sensitive information by reading this file.

[CLOSE] OSVDB ID : 54523 - Disclosed: 2009-05-11

Description:

(Description Provided by CVE) : Application Access Server (A-A-S) 2.0.48 has "wildbat" as its default password for the admin account, which makes it easier for remote attackers to obtain access.

[CLOSE] OSVDB ID : 54398 - Disclosed: 2009-05-11

Description:

(Description Provided by CVE) : Multiple cross-site request forgery (CSRF) vulnerabilities in index.aas in Application Access Server (A-A-S) 2.0.48 allow remote attackers to hijack the authentication of administrators for requests that (1) execute arbitrary programs via a command job, (2) stop services via a setservice job, or (3) terminate processes via a killprocess job.

[CLOSE] OSVDB ID : 41501 - Disclosed: 2008-02-03

Description:

A-Blog contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'blog.php' script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 29217 - Disclosed: 2006-09-26

Description:

A-Blog contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the menu.php script not properly sanitizing user input supplied to the 'navigation_start' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 38232 - Disclosed: 2006-09-27

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in A-Blog 2 allow remote attackers to execute arbitrary PHP code via a URL in the (1) open_box, (2) middle_box, and (3) close_box parameters in (a) sources/myaccount.php; the (4) navigation_end parameter in (b) navigation/search.php and (c) navigation/donation.php; and the (6) navigation_start and (7) navigation_middle parameters in navigation/donation.php, (d) navigation/latestnews.php, and (e) navigation/links.php; different vectors than CVE-2006-5092.

[CLOSE] OSVDB ID : 38233 - Disclosed: 2006-09-27

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in A-Blog 2 allow remote attackers to execute arbitrary PHP code via a URL in the (1) open_box, (2) middle_box, and (3) close_box parameters in (a) sources/myaccount.php; the (4) navigation_end parameter in (b) navigation/search.php and (c) navigation/donation.php; and the (6) navigation_start and (7) navigation_middle parameters in navigation/donation.php, (d) navigation/latestnews.php, and (e) navigation/links.php; different vectors than CVE-2006-5092.

[CLOSE] OSVDB ID : 38234 - Disclosed: 2006-09-27

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in A-Blog 2 allow remote attackers to execute arbitrary PHP code via a URL in the (1) open_box, (2) middle_box, and (3) close_box parameters in (a) sources/myaccount.php; the (4) navigation_end parameter in (b) navigation/search.php and (c) navigation/donation.php; and the (6) navigation_start and (7) navigation_middle parameters in navigation/donation.php, (d) navigation/latestnews.php, and (e) navigation/links.php; different vectors than CVE-2006-5092.

[CLOSE] OSVDB ID : 38231 - Disclosed: 2006-09-27

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in A-Blog 2 allow remote attackers to execute arbitrary PHP code via a URL in the (1) open_box, (2) middle_box, and (3) close_box parameters in (a) sources/myaccount.php; the (4) navigation_end parameter in (b) navigation/search.php and (c) navigation/donation.php; and the (6) navigation_start and (7) navigation_middle parameters in navigation/donation.php, (d) navigation/latestnews.php, and (e) navigation/links.php; different vectors than CVE-2006-5092.

[CLOSE] OSVDB ID : 41500 - Disclosed: 2008-02-03

Description:

A-Blog contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'words' parameter upon submission to the 'search.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 38230 - Disclosed: 2006-09-27

Description:

(Description Provided by CVE) : Multiple PHP remote file inclusion vulnerabilities in A-Blog 2 allow remote attackers to execute arbitrary PHP code via a URL in the (1) open_box, (2) middle_box, and (3) close_box parameters in (a) sources/myaccount.php; the (4) navigation_end parameter in (b) navigation/search.php and (c) navigation/donation.php; and the (6) navigation_start and (7) navigation_middle parameters in navigation/donation.php, (d) navigation/latestnews.php, and (e) navigation/links.php; different vectors than CVE-2006-5092.

[CLOSE] OSVDB ID : 76203 - Disclosed: 2010-09-05

Description:

A-Blog contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'sources/search.php' script not properly sanitizing user-supplied input to the 'words' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 32402 - Disclosed: 2006-12-22

Description:

a-blog contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate unspecified variables upon submission to an unspecified script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 26227 - Disclosed: 2006-06-08

Description:

(Description Provided by CVE) : A-CART 2.0 stores the acart2_0.mdb file under the web document root with insufficient access control, which allows remote attackers to obtain username and password information.

[CLOSE] OSVDB ID : 4358 - Disclosed: 2003-12-03

Description:

A-CART contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "msg" variable upon submission to the "admin/error.asp" script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 4359 - Disclosed: 2003-12-03

Description:

A-CART contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "msg" variable upon submission to the "admin/index.asp" script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 4674 - Disclosed: 2004-03-30

Description:

A-CART contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate certain variables upon submission to the billing.asp script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 4675 - Disclosed: 2004-03-30

Description:

A-CART contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the catcode variable in the category.asp module is not verified properly and will allow an attacker to inject or manipulate SQL queries.

[CLOSE] OSVDB ID : 4361 - Disclosed: 2003-12-04

Description:

A-CART contains a flaw that allows a remote attacker to delete products or categories in the database. The issue is due to the category.asp script using a weak authentication method for administrative actions. If an attacker calls the category.asp script with specific arguments in conjunction with one of the XSS vulnerabilities found in the software, the attacker could cause the administrator to delete arbitrary products or categories from the database.