Vendor Dictionary: DUware

DUware

Short Name:	DUware
Previous Names:	[None Entered]
URL:	http://www.duware.com/ [visit link]
Email:	[None Entered]
Security URL:	[None Entered]
Security Email:	[None Entered]
Knowledge Base:	http://www.duware.com/products/category.asp?iCat=5&nCat=Knowledge%20Base [visit link]
Notes:	Web based contact form: http://www.duware.com/home/contact.asp
Full Details...

Vulnerabilities by Vendor Product

DUware

« Previous 1 2 3 Next »

DUware

DUdirectory Pro SQL: 3.0; OSVDB ID: 21385 DUware Multiple Products type.asp iType Parameter SQL Injection

DUamazon: 3.0; OSVDB ID: 3644 DUware Multiple Products inc_menu.asp Admin Authentication Bypass; 3.1; OSVDB ID: 17590 DUamazon type.asp iType Parameter SQL Injection; OSVDB ID: 21385 DUware Multiple Products type.asp iType Parameter SQL Injection

DUarticle: 1.0; OSVDB ID: 3648 DUarticle inc_menu.asp Admin Authentication Bypass; 1.1; OSVDB ID: 21385 DUware Multiple Products type.asp iType Parameter SQL Injection

DUdirectory Pro: 3.0; OSVDB ID: 21385 DUware Multiple Products type.asp iType Parameter SQL Injection

DUbanner: 3.0; OSVDB ID: 3649 DUbanner inc_menu.asp Admin Authentication Bypass

DUclassified: 4.0; OSVDB ID: 3644 DUware Multiple Products inc_menu.asp Admin Authentication Bypass; OSVDB ID: 10669 DUclassified adDetail.asp Multiple Parameter SQL Injection; OSVDB ID: 10668 DUclassified Admin Page user Parameter SQL Injection; 4.1; OSVDB ID: 3644 DUware Multiple Products inc_menu.asp Admin Authentication Bypass; OSVDB ID: 10669 DUclassified adDetail.asp Multiple Parameter SQL Injection; OSVDB ID: 10668 DUclassified Admin Page user Parameter SQL Injection; 4.2; OSVDB ID: 10669 DUclassified adDetail.asp Multiple Parameter SQL Injection; OSVDB ID: 10668 DUclassified Admin Page user Parameter SQL Injection; OSVDB ID: 21385 DUware Multiple Products type.asp iType Parameter SQL Injection

DUamazon Pro: 3.0; OSVDB ID: 17602 DUware Multiple Products sub.asp iSub Parameter SQL Injection; OSVDB ID: 17592 DUamazon Pro productEdit.asp iCat Parameter SQL Injection; OSVDB ID: 17591 DUamazon Pro productDelete.asp iCat Parameter SQL Injection; OSVDB ID: 17593 DUamazon Pro catDelete.asp iCat Parameter SQL Injection; OSVDB ID: 17594 DUamazon Pro review.asp iPro Parameter SQL Injection; OSVDB ID: 17595 DUamazon Pro detail.asp iSub Parameter SQL Injection

DUdirectory: 3.0; OSVDB ID: 3645 DUdirectory inc_menu.asp Admin Authentication Bypass; 3.1; OSVDB ID: 21385 DUware Multiple Products type.asp iType Parameter SQL Injection

DUcalendar: 1.0; OSVDB ID: 3657 DUcalendar inc_menu.asp Admin Authentication Bypass; 1.1; OSVDB ID: 3657 DUcalendar inc_menu.asp Admin Authentication Bypass

DUclassmate: 1.0; OSVDB ID: 3644 DUware Multiple Products inc_menu.asp Admin Authentication Bypass; 1.2; OSVDB ID: 10663 DUclassmate account.asp MM-recordId Parameter Arbitrary Password Modification; OSVDB ID: 17588 DUclassmate default.asp iState Parameter SQL Injection; OSVDB ID: 17589 DUclassmate edit.asp iPro Parameter SQL Injection

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.