When a sound is inserted into Microsoft Office PowerPoint 2007, the software crashes. This has been tested on Office 2007 and may affect other versions as well.
Ekinboard is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input.An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in the context of the affected site. This may facilitate the theft of cookie-based authentication credentials as well as other attacks.
The Template Seller Pro application is prone to a remote file include vulnerability. This vulnerability occurs due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this vulnerability by injecting a malicious URL in the 'config[basepath]' parameter of the 'payment_paypal.php' script. By including a remote file containing arbitrary PHP code, an attacker can execute arbitrary commands on the affected server with the privileges of the web server process. This could lead to unauthorized access and compromise of the system.
phpwcms is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in the browser of an unsuspecting user in the context of the affected site. This may facilitate the theft of cookie-based authentication credentials as well as other attacks.
phpWCMS is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to obtain sensitive information that may help with further attacks on the affected computer.
phpWCMS is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to obtain sensitive information that may help with further attacks on the affected computer.
Pearl Forums is prone to a local file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to disclose sensitive information. This may help with further attacks on the affected computer. It should be noted that this issue may also be leveraged to read arbitrary files on an affected computer with the privileges of the Web server.
The Pearl Forums application fails to properly sanitize user-supplied input before using it in an SQL query. This allows an attacker to manipulate the SQL query and potentially execute malicious commands. Successful exploitation of these vulnerabilities could result in compromising the application, disclosing or modifying data, or exploiting vulnerabilities in the underlying database implementation.
Walla TeleSite is prone to multiple input validation vulnerabilities. These vulnerabilities occur due to a lack of proper sanitization of user-supplied input. The vulnerabilities include information and path disclosure, file enumeration, SQL injection, and cross-site scripting attacks within the context of the victim's Web browser and the affected computer. Other attacks may also be possible.
Walla TeleSite is prone to multiple input validation vulnerabilities. These are due to a lack of proper sanitization of user-supplied input. The vulnerabilities include information and path disclosure, file enumeration, SQL injection, and cross-site scripting attacks within the context of the victim's Web browser and the affected computer. Other attacks are also possible.
Services By CQR