Multiple cross-site scripting (XSS) vulnerabilities in Lussumo Vanilla 1.1.4 and earlier (1) allow remote attackers to inject arbitrary web script or HTML via the NewPassword parameter to people.php, and allow remote authenticated users to...
SQL injection vulnerability in tr1.php in YourFreeWorld Forced Matrix Script allows remote attackers to execute arbitrary SQL commands via the id parameter. Date published : 2008-08-21 http://www.securityfocus.com/bid/30760 https://www.exploit-db.com/exploits/6939
SQL injection vulnerability in tr.php in YourFreeWorld Viral Marketing Script allows remote attackers to execute arbitrary SQL commands via the id parameter. Date published : 2008-08-21 http://www.securityfocus.com/bid/30764 https://www.exploit-db.com/exploits/6941
SQL injection vulnerability in view.php in YourFreeWorld Classifieds Script allows remote attackers to execute arbitrary SQL commands via the category parameter. Date published : 2008-08-21 http://www.securityfocus.com/bid/30761 https://www.exploit-db.com/exploits/6945
SQL injection vulnerability in trl.php in YourFreeWorld Stylish Text Ads Script allows remote attackers to execute arbitrary SQL commands via the id parameter. Date published : 2008-08-21 http://www.securityfocus.com/bid/30766 http://www.packetstormsecurity.org/0808-exploits/stylishtextads-sql.txt
SQL injection vulnerability in details.php in YourFreeWorld Programs Rating Script allows remote attackers to execute arbitrary SQL commands via the id parameter. Date published : 2008-08-21 http://www.securityfocus.com/bid/30759 http://www.packetstormsecurity.org/0808-exploits/prograte-sql.txt
SQL injection vulnerability in tr.php in YourFreeWorld Ad-Exchange Script allows remote attackers to execute arbitrary SQL commands via the id parameter. Date published : 2008-08-21 http://www.securityfocus.com/bid/30762 http://www.packetstormsecurity.org/0808-exploits/adexchange-sql.txt
SQL injection vulnerability in tr.php in YourFreeWorld Short Url & Url Tracker Script allows remote attackers to execute arbitrary SQL commands via the id parameter. Date published : 2008-08-21 http://www.securityfocus.com/bid/30767 https://www.exploit-db.com/exploits/6940
SQL injection vulnerability in tr.php in YourFreeWorld URL Rotator Script allows remote attackers to execute arbitrary SQL commands via the id parameter. Date published : 2008-08-21 http://www.securityfocus.com/bid/30765 https://www.exploit-db.com/exploits/6949
SQL injection vulnerability in tr.php in YourFreeWorld Banner Management Script allows remote attackers to execute arbitrary SQL commands via the id parameter. Date published : 2008-08-21 http://www.securityfocus.com/bid/30756 https://www.exploit-db.com/exploits/6276
SQL injection vulnerability in view_group.php in Active PHP Bookmarks (APB) 1.1.02 and 1.2.06 allows remote attackers to execute arbitrary SQL commands via the id parameter. Date published : 2008-08-21 http://www.securityfocus.com/bid/30757 https://www.exploit-db.com/exploits/6277
Cross-site scripting (XSS) vulnerability in index.php in PHPizabi before 848 Core HotFix Pack 3 allows remote attackers to inject arbitrary web script or HTML via the query parameter in a blogs.search action. Date published...
Format string vulnerability in Ipswitch WS_FTP Home 2007.0.0.2 and WS_FTP Professional 2007.1.0.0 allows remote FTP servers to cause a denial of service (application crash) or possibly execute arbitrary code via format string specifiers in...
Stack-based buffer overflow in EO Video (eo-video) 1.36 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a .eop (aka playlist) file with a ProjectElement element that...