Vulnerability: Project Alumni Project Alumni Published: 2008-05-08 Severity: HIGH Description: sql injection vulnerability in info.php in project alumni 1.0.9 allows remote attackers to execute arbitrary sql commands via the id parameter.
Vulnerability: Project Alumni Project Alumni Published: 2008-05-08 Severity: MEDIUM Description: cross-site scripting (xss) vulnerability in pages/news.page.inc in project alumni 1.0.9 allows remote attackers to inject arbitrary web script or html via the year parameter in a news action to index.php, a different vector than cve- 2007-6126.
Vulnerability: ScriptsEZ Power Editor Published: 2008-05-08 Severity: MEDIUM Description: multiple directory traversal vulnerabilities in editor.php in scriptsez.net power editor 2.0 allow remote attackers to read arbitrary local files via a .. (dot dot) in the (1) te and (2) dir parameters in a tempedit action.
Vulnerability: ScriptsEZ Power Editor Published: 2008-05-08 Severity: MEDIUM Description: multiple cross-site scripting (xss) vulnerabilities in editor.php in scriptsez.net power editor 2.0 allow remote attackers to inject arbitrary web script or html via the (1) te and (2) dir parameters in a tempedit action.
Vulnerability: PreProjects.com Pre Shopping Mall Published: 2008-05-08 Severity: HIGH Description: sql injection vulnerability in emall/search.php in pre shopping mall 1.1 allows remote attackers to execute arbitrary sql commands via the search parameter.
POWERFUL INFORMATION AT YOUR
FINGERTIPS (SPONSORED LINKS)
