[CLOSE] OSVDB ID : 48346 - Disclosed: 2008-09-04

Description:

Zen Cart contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the includes/classes/shopping_cart.php script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 47684 - Disclosed: 2008-08-19

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Lussumo Vanilla 1.1.4 and earlier (1) allow remote attackers to inject arbitrary web script or HTML via the NewPassword parameter to people.php, and allow remote authenticated users to inject arbitrary web script or HTML via the (2) Account picture and (3) Icon fields in account.php. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 47590 - Disclosed: 2008-08-18

Description:

SunShop Shopping Cart contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the "class.ajax.php" script not properly sanitizing user-supplied input to the "id" and other unspecified parameters. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 47632 - Disclosed: 2008-08-16

Description:

PHP Live Helper contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'onlinestatus_html.php' script not properly sanitizing user-supplied input to the 'dep' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 47613 - Disclosed: 2008-08-09

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in Kayako SupportSuite 3.20.02 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the sessionid parameter in a livesupport startclientchat action to visitor/index.php; (2) the filter parameter in a news view action to index.php; or the Full Name field in a (3) account creation, (4) ticket opening, or (5) chat request operation.

[CLOSE] OSVDB ID : 47482 - Disclosed: 2008-08-07

Description:

A vulnerability exists in the e107 CMS <= 0.7.11 which allows an attacker to overwrite variables used by the application via the $_POST superglobal, due to the unsafe usage of the extract() function call. The impact of this issue varies depending on which variables an attacker chooses to overwrite. Known attacks leveraging this issue includes SQL Injection, and PHP code execution.

[CLOSE] OSVDB ID : 49125 - Disclosed: 2008-08-05

Description:

Plogger contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'admin/plog-themes.php' script not properly sanitizing user-supplied input to the 'activate' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 50186 - Disclosed: 2008-07-30

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in Pligg 9.9 and earlier allows remote attackers to inject arbitrary web script or HTML via the keyword parameter in a search action to user.php and other unspecified vectors.

[CLOSE] OSVDB ID : 50189 - Disclosed: 2008-07-30

Description:

Pligg contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'vote.php' script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 50190 - Disclosed: 2008-07-30

Description:

Pligg contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'trackback.php' script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 50191 - Disclosed: 2008-07-30

Description:

Pligg contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'submit.php' script not properly sanitizing user-supplied input to the unspecified parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 50192 - Disclosed: 2008-07-30

Description:

Pligg contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'story.php' script not properly sanitizing user-supplied input to the 'requestTitle' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 50193 - Disclosed: 2008-07-30

Description:

Pligg contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'recommend.php' script not properly sanitizing user-supplied input to the 'requestID' and 'requestTitle' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 50194 - Disclosed: 2008-07-30

Description:

Pligg contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'cloud.php' script not properly sanitizing user-supplied input to the 'categoryID' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 50195 - Disclosed: 2008-07-30

Description:

Pligg contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'out.php' script not properly sanitizing user-supplied input to the 'title' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 50196 - Disclosed: 2008-07-30

Description:

Pligg contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'login.php' script not properly sanitizing user-supplied input to the 'username' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 50197 - Disclosed: 2008-07-30

Description:

Pligg contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'cvote.php' script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 50198 - Disclosed: 2008-07-30

Description:

Pligg contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'edit.php' script not properly sanitizing user-supplied input to the 'commentid' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 47186 - Disclosed: 2008-07-28

Description:

ViArt Shop contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'products_rss.php' script not properly sanitizing user-supplied input to the 'category_id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 23596 - Disclosed: 2006-03-02

Description:

Gallery contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'X_FORWARDED_FOR' HTTP header field upon submission to the GalleryUtilities.class script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 23597 - Disclosed: 2006-03-02

Description:

Gallery contains a flaw that allows a remote attacker to delete files outside of the web path. The issue is due to the GallerySession.class not properly sanitizing user input, specifically directory traversal style attacks (../../) supplied via the sessionId variable(s).

[CLOSE] OSVDB ID : 23349 - Disclosed: 2006-02-19

Description:

Geeklog contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to lib-common.php not properly sanitizing user input supplied to the 'language' variable. This may allow an attacker to read arbitrary local files or include local files which contain arbitrary commands which will be executed by the vulnerable script.

[CLOSE] OSVDB ID : 23117 - Disclosed: 2006-02-12

Description:

XMB Forums contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'today.php' script not properly sanitizing user-supplied input to the cookies. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 23118 - Disclosed: 2006-02-12

Description:

XMB Forums contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the u2u.inc.php script not properly sanitizing user-supplied input to the 'u2u_mod_delete()', 'u2u_mod_move()', and 'u2u_mod_markUnread()' functions. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 18908 - Disclosed: 2005-08-19

Description:

RunCMS contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'Search Engine' not properly sanitizing user-supplied input to the 'addquery' and 'subquery' variables. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 18909 - Disclosed: 2005-08-19

Description:

RunCMS contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'newtopic.php' script not properly sanitizing user-supplied input to the 'forum' variable. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 18910 - Disclosed: 2005-08-19

Description:

RunCMS contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'edit.php' script not properly sanitizing user-supplied input to the 'forum' variable. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 18911 - Disclosed: 2005-08-19

Description:

RunCMS contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'reply.php' script not properly sanitizing user-supplied input to the 'forum' variable. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 18912 - Disclosed: 2005-08-19

Description:

RunCMS contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'print.php' script not properly sanitizing user-supplied input to the 'msg_id' variable. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 18400 - Disclosed: 2005-07-31

Description:

MySQL Eventum contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'id' variable upon submission to the 'view.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 18401 - Disclosed: 2005-07-31

Description:

MySQL Eventum contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'release' variable upon submission to the 'list.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 18402 - Disclosed: 2005-07-31

Description:

MySQL Eventum contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'F' variable upon submission to the 'get_jsrs_data.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 18403 - Disclosed: 2005-07-31

Description:

MySQL Eventum contains a flaw that may allow a remote attacker to carry out an SQL injection attack and bypass authentication settings. The issue is due to the 'login.php' script not properly sanitizing user-supplied input to the 'email' variable. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database to bypass authentication.

[CLOSE] OSVDB ID : 18404 - Disclosed: 2005-07-31

Description:

MySQL Eventum contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'custom_fields.php' script not properly sanitizing user-supplied input to the report class. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 18405 - Disclosed: 2005-07-31

Description:

MySQL Eventum contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'custom_fields_graph.php' script not properly sanitizing user-supplied input to the report class. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 18406 - Disclosed: 2005-07-31

Description:

MySQL Eventum contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'releases.php' script not properly sanitizing user-supplied input to the release class. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 18395 - Disclosed: 2005-07-30

Description:

Kayako LiveResponse contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'username' variable upon submission to the index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity and confidentiality

[CLOSE] OSVDB ID : 18396 - Disclosed: 2005-07-30

Description:

Kayako LiveResponse contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'year' or 'date' variables in the calendar feature. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 18397 - Disclosed: 2005-07-30

Description:

Kayako LiveResponse contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue exists because the application does not sanitize the user's input when entering a session or sending a message to the support staff. A malicious user may input arbitrary code which will be executed in the context of the support staff browser. This flaw may lead to a loss of confidentiality, integrity and availability.

[CLOSE] OSVDB ID : 18398 - Disclosed: 2005-07-30

Description:

Kayako LiveResponse contains a flaw that may lead to an unauthorized password exposure. The passwords are sent in plain text in the URL when logging into the application, which may lead to a loss of confidentiality.