SQL injection vulnerability in index.php in the mosDirectory (com_directory) 2.3.2 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a viewcat action. Date published : 2008-02-11 http://www.securityfocus.com/bid/27585...
SQL injection vulnerability in index.php in the Marketplace (com_marketplace) 1.1.1 and 1.1.1-pl1 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a show_category action. Date published :...
Cross-site scripting (XSS) vulnerability in catalog.php in Smartscript Domain Trader 2.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter in a viewcategory action. Date published : 2008-02-11 http://www.securityfocus.com/bid/27571...
Cross-site scripting (XSS) vulnerability in siteadmin/editor_files/includes/load_message.php in the Youtube Clone Script allows remote attackers to inject arbitrary web script or HTML via the lang[please_wait] parameter. Date published : 2008-02-11 http://www.securityfocus.com/bid/27598 http://www.securityfocus.com/archive/1/487432/100/0/threaded
SQL injection vulnerability in index.php in the NeoReferences (com_neoreferences) 1.3.1 and 1.3.3 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter. Date published : 2008-02-11 http://www.securityfocus.com/bid/27564 https://www.exploit-db.com/exploits/5034
SQL injection vulnerability in ViewCat.php in iTechClassifieds 3.0 allows remote attackers to execute arbitrary SQL commands via the CatID parameter. Date published : 2008-02-11 http://www.securityfocus.com/bid/27574 http://marc.info/?l=bugtraq&m=120197273611835&w=2
Cross-site scripting (XSS) vulnerability in ViewCat.php in iTechClassifieds 3.0 allows remote attackers to inject arbitrary web script or HTML via the CatID parameter. Date published : 2008-02-11 http://www.securityfocus.com/bid/27574 http://marc.info/?l=bugtraq&m=120197273611835&w=2
SQL injection vulnerability in shiftthis-preview.php in the ShiftThis Newsletter (st_newsletter) plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the newsletter parameter. Date published : 2008-02-11 http://www.securityfocus.com/bid/27586 https://www.exploit-db.com/exploits/5053
SQL injection vulnerability in wordspew-rss.php in the Wordspew plugin before 3.72 for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter. Date published : 2008-02-11 http://www.securityfocus.com/bid/27583 http://pierre.sudarovich.free.fr/index.php/2006/02/28/ajax-shoutbox/
SQL injection vulnerability in index.php in PHPShop 0.8.1 allows remote attackers to execute arbitrary SQL commands via the product_id parameter, as demonstrated by a shop/flypage action. Date published : 2008-02-11 http://www.securityfocus.com/bid/27570 http://www.securityfocus.com/archive/1/487435/100/0/threaded
SNMPd in MikroTik RouterOS 3.2 and earlier allows remote attackers to cause a denial of service (daemon crash) via a crafted SNMP SET request. Date published : 2008-02-11 http://www.securityfocus.com/bid/27599 https://www.exploit-db.com/exploits/5054
Cross-site scripting (XSS) vulnerability in index.php in BlogPHP 2.0 allows remote attackers to inject arbitrary web script or HTML via the search parameter. Date published : 2008-02-11 http://www.securityfocus.com/bid/27591 https://www.exploit-db.com/exploits/5042
SQL injection vulnerability in index.php in BlogPHP 2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter in a page action. Date published : 2008-02-11 http://www.securityfocus.com/bid/27591 https://www.exploit-db.com/exploits/5042
SQL injection vulnerability in blog.php in A-Blog 2 allows remote attackers to execute arbitrary SQL commands via the id parameter in a news action. Date published : 2008-02-11 http://www.securityfocus.com/bid/27594 https://www.exploit-db.com/exploits/5050