PropertyMax Pro FREE is prone to multiple remote vulnerabilities, including an authentication bypass vulnerability and a cross-site scripting vulnerability. The authentication bypass vulnerability occurs because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit this issue to bypass authentication and gain access to the application. The cross-site scripting vulnerability occurs because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker can exploit this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks.
A remote SQL injection exploit exists in WebCal, which is the latest version of the script. An attacker can exploit this vulnerability by sending a specially crafted HTTP request to the vulnerable server. The request contains an SQL query in the form of 'http://[website]/[script]/webCal3_detail.asp?event_id=20814+union+select+1,2,3,4,5,6,7,8,9,10+from+msysobjects' which can be used to extract data from the database.
The vulnerability is due to insufficient sanitization of user-supplied input in the 'id' parameter of the 'read.php' script and the 'action' parameter of the 'admin.php' script. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code and to include arbitrary local files by using directory traversal sequences.
A vulnerability exists in AlstraSoft Article Manager Pro which allows an attacker to upload a malicious shell to the vulnerable server. The attacker can then use the shell to execute arbitrary commands on the server. The vulnerability is due to insufficient validation of the uploaded file type, allowing an attacker to upload a malicious shell with a double extension such as .php.jpg. The malicious shell can then be accessed by the attacker via the URL http://www.example.com/article/images/author_pics/[id].php.
This exploit allows an attacker to gain access to the remote database of ASP Football Pool v2.3. The exploit uses the LWP::UserAgent module to send a request to the target URL and download the database file (NFL.mdb) to the attacker's machine.
AdaptBB 1.0 is vulnerable to a Remote File Include vulnerability. The vulnerability exists in the latestposts.php file, in line 20, where the include() function is used to include the config.php file from the forumspath parameter. An attacker can exploit this vulnerability by sending a malicious URL to the vulnerable server, which will include the malicious file.
This vulnerability allows an attacker to bypass the authentication requirement of the dbbackup.php page and read the backup without downloading it. The attacker can access the backup by going to the dbbackup.txt page.
An attacker can gain access to the admin.mdb file by accessing the admin.asp page of the R2 Newsletter Store script. The attacker can then view the contents of the admin.mdb file, which contains sensitive information such as usernames and passwords.
A SQL-injection vulnerability exists in Ecsportal 6.5. An attacker can exploit this vulnerability by sending a specially crafted HTTP request to the vulnerable application. This request contains malicious SQL code that can be executed by the application, allowing the attacker to gain access to sensitive information such as usernames and passwords. The vulnerable file is article_view_photo.php and the exploit code is: article_view_photo.php?id=-999%20union%20all%20select%201,2,3,concat(username,0x3a,password),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54%20from%20ecsusers%20limit%200,1--
Joomla Component com_juser (id) SQL injection Vulnerability allows an attacker to inject malicious SQL statements into vulnerable web application. This vulnerability can be exploited to bypass authentication, access, modify and delete data in the back-end database.
Services By CQR