A buffer overflow vulnerability exists in QQPlayer versions <=2.3.696.400p1 when processing a specially crafted .smi file. An attacker can exploit this vulnerability to execute arbitrary code in the context of the application.
A parameter in ttvideo.php is not properly sanitised before being used in a SQL query, which can be exploited to manipulate SQL queries by injecting arbitrary SQL code.
A Remote File Inclusion (RFI) vulnerability exists in the Joomla Component com_joomla-visites, which allows an attacker to include a remote file, such as a malicious PHP script, by manipulating the 'mosConfig_absolute_path' parameter. This vulnerability affects versions prior to Joomla 1.5.20. Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code on the vulnerable system.
Freeway CMS 1.4.3.210 is vulnerable to SQL Injection. An attacker can inject malicious SQL queries via the 'ecPath' parameter in the 'index.php' script. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.
Some parameters in controlpanel.php are not properly sanitised before being used in SQL queries, which can be exploited to manipulate SQL queries by injecting arbitrary SQL code. Successful exploitation requires that 'magic_quotes_gpc' is disabled.
CMS Ignition is vulnerable to SQL Injection. An attacker can exploit this vulnerability to gain access to sensitive information stored in the database. The vulnerability exists due to insufficient sanitization of user-supplied input in the 'shopMGID' parameter of the 'shop.htm' script. An attacker can exploit this vulnerability by sending a specially crafted HTTP request containing malicious SQL statements to the vulnerable script. Successful exploitation of this vulnerability can result in unauthorized access to sensitive information stored in the database.
The vulnerability exists due to the lack of proper sanitization of user-supplied input in the 'mesajid' parameter of the 'alinti.php' script. A remote attacker can send a specially crafted request to the vulnerable script and execute arbitrary SQL commands in application's database. An attacker can also inject malicious JavaScript code into the 'ballettin' cookie and execute it in the browser of an unsuspecting user.
After finding a bug on the sites, an attacker can run an SQL injection by appending 'SQLi' to the URL, or a Blind SQL injection by appending 'BSQLi' to the URL.
An attacker can exploit this vulnerability by sending a crafted SQL query to the vulnerable application. This can be done by appending the crafted SQL query to the vulnerable parameter in the URL. For example, http://www.site.com/index.php?option=com_youtube&id_cate=4 union+select+1,concat(username,0x3a,email),3,4,5,6,7,8+from+jos_users--
The vulnerability exists in the Joomla Component Joomdle, which is a bridge between Joomla and Moodle. The vulnerability is due to the lack of proper sanitization of user-supplied input in the 'cat_id' and 'course_id' parameters of the 'index.php' script. An attacker can exploit this vulnerability by sending a malicious SQL query to the vulnerable script. This can allow the attacker to gain access to the database and extract sensitive information such as usernames and passwords.
Services By CQR