[CLOSE] OSVDB ID : 20951 - Disclosed: 2005-11-18

Description:

Unclassified NewsBoard contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the search function not properly sanitizing user-supplied input to the 'DateFrom' or 'DateUntil' variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 20852 - Disclosed: 2005-11-12

Description:

WF-Downloads Module contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the viewcat.php script not properly sanitizing user-supplied input to the 'list' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 20748 - Disclosed: 2005-11-10

Description:

Moodle contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'get_record()' function in the datalib.php script not properly sanitizing user-supplied input to the 'id' variable in the category.php and info.php scripts. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 20749 - Disclosed: 2005-11-10

Description:

Moodle contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the plot.php script not properly sanitizing user-supplied input to the "user" variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 20750 - Disclosed: 2005-11-10

Description:

Moodle contains a flaw that may allow a remote attacker to trick a user into visiting an arbitrary site under the apparent trust of a legitimate site. The issue is due to the jumpto.php script providing a site redirect to an arbitrary web site. This may give an attacker a way to trick a user into clicking what appears to be a legitimate URL of a valid site, but really leads them to an arbitrary site with malicious content.

[CLOSE] OSVDB ID : 20851 - Disclosed: 2005-11-08

Description:

ATutor contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the registration.php script not properly sanitizing user-supplied input to the 'email' field. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 20474 - Disclosed: 2005-11-03

Description:

CuteNews contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to showarchives.php not properly sanitizing user input supplied to the 'template' variable. This may allow an attacker to include an arbitrary file. It also allows an attacker to gain administrative privileges by editing files and calling them with arbitrary commands.

[CLOSE] OSVDB ID : 20291 - Disclosed: 2005-10-23

Description:

PHP-Nuke contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the login script not properly sanitizing user-supplied input to the 'username' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 20292 - Disclosed: 2005-10-23

Description:

PHP-Nuke contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the downloads module (via modules.php) not properly sanitizing user-supplied input to the 'url' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 20293 - Disclosed: 2005-10-23

Description:

PHP-Nuke contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the web_links module not properly sanitizing user-supplied input to the 'description' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 20266 - Disclosed: 2005-10-21

Description:

MWChat contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'chat.php' script not properly sanitizing user-supplied input to the 'Username' variable. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 20070 - Disclosed: 2005-10-18

Description:

e107 contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'resetcore.php' script not properly sanitizing user-supplied input to the 'user' field. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 20071 - Disclosed: 2005-10-18

Description:

e107 contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate user-supplied input to the 'forum_title' field upon submission to the 'resetcore.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 20072 - Disclosed: 2005-10-18

Description:

e107 contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue occurs because the upload file functionality does not validate file extensions for user-supplied files. If an authenticated user uploads an executable file, it may be possible to execute arbitrary PHP code resulting in a loss of integrity.

[CLOSE] OSVDB ID : 19962 - Disclosed: 2005-10-10

Description:

versatileBulletinBoard (vBB) contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the login script not properly sanitizing user-supplied input to the 'login:' field. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 19963 - Disclosed: 2005-10-10

Description:

versatileBulletinBoard (vBB) contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'Search This Thread' feature not properly sanitizing user-supplied input to the search query. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 19964 - Disclosed: 2005-10-10

Description:

versatileBulletinBoard (vBB) contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'select' or 'categ' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 19965 - Disclosed: 2005-10-10

Description:

versatileBulletinBoard (vBB) contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the Private Message function not properly sanitizing user-supplied input to the 'to' field. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 19966 - Disclosed: 2005-10-10

Description:

versatileBulletinBoard (vBB) contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'Search for Posts' feature not properly sanitizing user-supplied input to the search query. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 19967 - Disclosed: 2005-10-10

Description:

versatileBulletinBoard (vBB) contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the userlistpre.php script not properly sanitizing user-supplied input to the 'list' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 19968 - Disclosed: 2005-10-10

Description:

versatileBulletinBoard (vBB) contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'Forgot Password' feature not properly sanitizing user-supplied input to the 'email' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 19969 - Disclosed: 2005-10-10

Description:

versatileBulletinBoard (vBB) contains a flaw that may allow a malicious user to adversely affect a user's browsing. The issue is triggered when an attacker uses the dereferrer.php script to redirect a person to an arbitrary site. It is possible that the flaw may allow the attacker to trick a user into executing arbitrary scripts on a malicious site.

[CLOSE] OSVDB ID : 19970 - Disclosed: 2005-10-10

Description:

versatileBulletinBoard (vBB) contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'url' variable upon submission to the dereferrer.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 19971 - Disclosed: 2005-10-10

Description:

versatileBulletinBoard (vBB) contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'file' variable upon submission to the imagewin.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 19972 - Disclosed: 2005-10-10

Description:

versatileBulletinBoard (vBB) contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'list' variable upon submission to the userlistpre.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 19973 - Disclosed: 2005-10-10

Description:

versatileBulletinBoard (vBB) contains a flaw that may lead to an unauthorized information disclosure.  The issue is triggered when a remote attacker calls the getversions.php script, which will disclose detailed file and version information resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 19943 - Disclosed: 2005-10-08

Description:

Cyphor contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'lostpwd.php' script not properly sanitizing user-supplied input to the 'nick' variable. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 19944 - Disclosed: 2005-10-08

Description:

Cyphor contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'newmsg.php' script not properly sanitizing user-supplied input to the 'fid' variable. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 19945 - Disclosed: 2005-10-08

Description:

Cyphor contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'fid' variable upon submission to the 'newmsg.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 19946 - Disclosed: 2005-10-08

Description:

Cyphor contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 't_login' variable upon submission to the 'footer.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 19940 - Disclosed: 2005-10-06

Description:

Utopia News Pro contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'sitetitle' variable upon submission to the 'header.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 19941 - Disclosed: 2005-10-06

Description:

Utopia News Pro contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'version' and 'query_count' variables upon submission to the 'footer.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 19942 - Disclosed: 2005-10-06

Description:

Utopia News Pro contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'news.php' script not properly sanitizing user-supplied input to the 'newsid' variable. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 19935 - Disclosed: 2005-10-01

Description:

myBloggie contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the login.php script not properly sanitizing user-supplied input beginning with a null character to the 'username' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 19885 - Disclosed: 2005-09-29

Description:

Lucid CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the login form script not properly sanitizing user-supplied input to the 'login' field. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 19718 - Disclosed: 2005-09-28

Description:

PHP-Fusion contains a flaw that may allow a remote attacker to carry out an SQL injection attack. The issue is due to the 'messages.php' script not properly sanitizing user-supplied input to the 'msg_send' variable. This may allow a remote attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 19679 - Disclosed: 2005-09-24

Description:

Mailgust contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the password reminder page not properly sanitizing user-supplied input to the email field. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 19650 - Disclosed: 2005-09-22

Description:

My Little Forum contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the search.php script not properly sanitizing user-supplied input to the 'search' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 19666 - Disclosed: 2005-09-22

Description:

phpMyFAQ contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the password.php script not properly sanitizing user-supplied input to the user: field. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 19667 - Disclosed: 2005-09-22

Description:

phpMyFAQ contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'PMF_CONF[version]' variable upon submission to the footer.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.