query string software vulnerabilities
vulnerabilities.aspcode.net
Searching query string software vulnerabilities
Buffer overflows in redirect.exe and changepw.e
redirectexe
|
changepwexe
|
arbitrary
|
attackers
|
overflows
|
commands
|
shopping
|
execute
|
PDGSoft
|
string
|
Buffer
|
remote
|
query
|
allow
|
long
|
cart
|
via
|
Buffer overflows in redirect.exe and changepw.exe in PDGSoft shopping cart allow remote attackers to execute arbitrary commands via a long query string.
code.php3 in Phorum 3.0.7 allows remote attacke
codephp3
|
Phorum
|
code.php3 in Phorum 3.0.7 allows remote attackers to read arbitrary files in the phorum directory via the query string.
Buffer overflow in wwwwais allows remote attack
QUERY_STRING
|
attackers
|
arbitrary
|
overflow
|
commands
|
execute
|
wwwwais
|
Buffer
|
allows
|
remote
|
long
|
via
|
Buffer overflow in wwwwais allows remote attackers to execute arbitrary commands via a long QUERY_STRING (HTTP GET request).
Directory traversal vulnerability in ScriptEase
vulnerability
|
viewcodejse
|
ScriptEase
|
arbitrary
|
sequences
|
attackers
|
traversal
|
Directory
|
Netware
|
string
|
allows
|
before
|
remote
|
query
|
files
|
read
|
via
|
SP3
|
Directory traversal vulnerability in ScriptEase viewcode.jse for Netware 5.1 before 5.1 SP3 allows remote attackers to read arbitrary files via ".." sequences in the query string.
Directory traversal vulnerability in source.php
vulnerability
|
arbitrary
|
attackers
|
sourcephp
|
Directory
|
traversal
|
Aquonics
|
Manager
|
remote
|
allows
|
files
|
File
|
read
|
via
|
Directory traversal vulnerability in source.php in Aquonics File Manager 1.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the HTTP query string.
Multiple cross-site scripting (XSS) vulnerabili
cross-site
|
scripting
|
Multiple
|
Multiple cross-site scripting (XSS) vulnerabilities in Sambar Server before 6.0 beta 6 allow remote attackers to inject arbitrary web script or HTML via the query string to (1) isapi/testisa.dll, (2) testcgi.exe, (3) environ.pl, (4) the query parameter to samples/search.dll, (5) the price parameter to mortgage.pl, (6) the query string in dumpenv.pl, (7) the query string to dumpenv.pl, and (8) the E-Mail field of the guestbook script (book.pl).
Buffer overflow in the zms script in ZoneMinder
ZoneMinder
|
overflow
|
script
|
Buffer
|
before
|
zms
|
Buffer overflow in the zms script in ZoneMinder before 1.19.2 may allow a remote attacker to execute arbitrary code via a long query string.
Buffer overflow in the Microsoft W3Who ISAPI (w
Microsoft
|
overflow
|
Buffer
|
ISAPI
|
W3Who
|
Buffer overflow in the Microsoft W3Who ISAPI (w3who.dll) allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long query string.
Cross-site scripting (XSS) vulnerability in BRS
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in BRS WebWeaver 1.07 allows remote attackers to execute arbitrary script as other users via the query string to ISAPISkeleton.dll.
Unknown vulnerability in WeHelpBUS 0.1 allows r
vulnerability
|
arbitrary
|
attackers
|
WeHelpBUS
|
commands
|
execute
|
Unknown
|
remote
|
string
|
allows
|
query
|
shell
|
via
|
Unknown vulnerability in WeHelpBUS 0.1 allows remote attackers to execute arbitrary shell commands via the query string.
The ReadLog function in kaiseki.cgi in pngren a
metacharacters
|
kaisekicgi
|
arbitrary
|
attackers
|
function
|
commands
|
execute
|
ReadLog
|
string
|
pngren
|
remote
|
allows
|
query
|
shell
|
via
|
The ReadLog function in kaiseki.cgi in pngren allows remote attackers to execute arbitrary commands via shell metacharacters in the query string.
Cross-site scripting (XSS) vulnerability in ind
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in index.php in lucidCMS 1.0.11 allows remote attackers to inject arbitrary web script or HTML via the query string.
Directory traversal vulnerability in getdox.php
vulnerability
|
Torrential
|
sequences
|
attackers
|
arbitrary
|
getdoxphp
|
traversal
|
Directory
|
argument
|
string
|
allows
|
remote
|
files
|
query
|
read
|
via
|
"/"
|
Directory traversal vulnerability in getdox.php in Torrential 1.2 allows remote attackers to read arbitrary files via "../" sequences in the query string argument.
Cross-site scripting (XSS) vulnerability in rkr
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in rkrt_stats.php in RedKernel Referrer Tracker 1.1.0-3 allows remote attackers to inject arbitrary web script or HTML via a query string value as a GET, which is stored in the $QUERY_STRING variable. NOTE: the provenance of this information is unknown; portions of the details are obtained from third party information.
Cross-site scripting (XSS) vulnerability in Cut
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in CuteNews 1.4.1 allows remote attackers to inject arbitrary web script or HTML via the query string to index.php.
SQL injection vulnerability in lib/adodb/server
lib/adodb/serverphp
|
vulnerability
|
AngelineCMS
|
injection
|
SQL
|
SQL injection vulnerability in lib/adodb/server.php in AngelineCMS 0.6.5 and earlier might allow remote attackers to execute arbitrary SQL commands via the query string.
Directory traversal vulnerability in easy-scart
vulnerability
|
easy-scartcgi
|
arbitrary
|
attackers
|
iShopCart
|
traversal
|
Directory
|
allows
|
remote
|
files
|
read
|
via
|
Directory traversal vulnerability in easy-scart.cgi in iShopCart allows remote attackers to read arbitrary files via a .. (dot dot) in the query string.
Format string vulnerability in Easy Address Boo
vulnerability
|
attackers
|
Address
|
service
|
remote
|
allows
|
denial
|
Format
|
string
|
Server
|
cause
|
Easy
|
Book
|
Web
|
Format string vulnerability in Easy Address Book Web Server 1.2 allows remote attackers to cause a denial of service (crash) or "compromise the server" via encoded format string specifiers in the query string.
Cross-site scripting (XSS) vulnerability in ind
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in index.php in Kayako SupportSuite 3.00.32 allows remote attackers to inject arbitrary web script or HTML via the query string.
Portal Search allows remote attackers to redire
attackers
|
arbitrary
|
top-level
|
redirect
|
placing
|
Portal
|
string
|
Search
|
allows
|
remote
|
query
|
site
|
URI
|
URL
|
web
|
Portal Search allows remote attackers to redirect a URL to an arbitrary web site by placing the URL in the query string to the top-level URI.
Software vulnerabilities results 1 to 20 of 1047
Page:
1
2
3
4
5
...
53
►