statsphp software vulnerabilities
vulnerabilities.aspcode.net
Searching statsphp software vulnerabilities
Multiple SQL injection vulnerabilities in XMB 1
vulnerabilities
|
privileges
|
arbitrary
|
attackers
|
injection
|
Multiple
|
remote
|
inject
|
Final
|
allow
|
gain
|
SQL
|
via
|
SP2
|
XMB
|
Multiple SQL injection vulnerabilities in XMB 1.8 Final SP2 allow remote attackers to inject arbitrary SQL and gain privileges via the (1) ppp parameter in viewthread.php, (2) desc parameter in misc.php, (3) tpp parameter in forumdisplay.php, (4) ascdesc parameter in forumdisplay.php, or (5) the addon parameter in stats.php. NOTE: it has also been shown that item (3) is also in XMB 1.9 beta.
SQL injection vulnerability in phpBannerExchang
phpBannerExchange
|
vulnerability
|
arbitrary
|
attackers
|
injection
|
commands
|
execute
|
remote
|
before
|
Update
|
allows
|
via
|
SQL
|
SQL injection vulnerability in phpBannerExchange before 2.0 Update 6 allows remote attackers to execute arbitrary SQL commands via the (1) login parameter in (a) client/stats.php and (b) admin/stats.php, or the (2) pass parameter in client/stats.php.
Multiple PHP remote file inclusion vulnerabilit
vulnerabilities
|
inclusion
|
arbitrary
|
attackers
|
parameter
|
Multiple
|
Downstat
|
execute
|
earlier
|
remote
|
Vmist
|
allow
|
code
|
file
|
art
|
PHP
|
via
|
URL
|
Multiple PHP remote file inclusion vulnerabilities in Vmist Downstat 1.8 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the art parameter to (1) admin.php, (2) chart.php, (3) modes.php, or (4) stats.php.
Multiple cross-site scripting (XSS) vulnerabili
cross-site
|
scripting
|
Multiple
|
Multiple cross-site scripting (XSS) vulnerabilities in EQdkp 1.3.2c and earlier allow remote attackers to inject arbitrary web script or HTML via the show parameter to (1) listmembers.php and (2) stats.php. NOTE: some of these details are obtained from third party information.
Software vulnerabilities results 1 to 5 of 5
Page:
1