dj_eyes2005 - Security Researcher - Exploit Intelligence Platform

CVE-2006-2264 EXPLOITDB text WRITEUP

Calendar Manager Pro 1.00 - SQL Injection via Date, SearchFor, or ID Parameter

Multiple SQL injection vulnerabilities in Ocean12 Calendar Manager Pro 1.00 allow remote attackers to execute arbitrary SQL commands via the (1) date parameter to admin/main.asp, (2) SearchFor parameter to admin/view.asp, or (3) ID parameter to admin/edit.asp. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

View Code

CVE-2006-2265 EXPLOITDB text WRITEUP

Ocean12 Calendar Manager Pro 1.00 - Cross-Site Scripting via Date Parameter

Cross-site scripting vulnerability in admin/main.asp in Ocean12 Calendar Manager Pro 1.00 allows remote attackers to inject arbitrary web script or HTML via the date parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

View Code

CVE-2006-2264 EXPLOITDB text WRITEUP

Calendar Manager Pro 1.00 - SQL Injection via Date, SearchFor, or ID Parameter

Multiple SQL injection vulnerabilities in Ocean12 Calendar Manager Pro 1.00 allow remote attackers to execute arbitrary SQL commands via the (1) date parameter to admin/main.asp, (2) SearchFor parameter to admin/view.asp, or (3) ID parameter to admin/edit.asp. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

View Code

CVE-2006-2264 EXPLOITDB text WRITEUP

Calendar Manager Pro 1.00 - SQL Injection via Date, SearchFor, or ID Parameter

Multiple SQL injection vulnerabilities in Ocean12 Calendar Manager Pro 1.00 allow remote attackers to execute arbitrary SQL commands via the (1) date parameter to admin/main.asp, (2) SearchFor parameter to admin/view.asp, or (3) ID parameter to admin/edit.asp. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

View Code

CVE-2005-4141 EXPLOITDB text WRITEUP

ASPMForum - SQL Injection via harf or baslik Parameter

Multiple SQL injection vulnerabilities in ASPMForum allow remote attackers to execute arbitrary SQL commands via the (1) harf parameter in kullanicilistesi.asp and (2) baslik parameter in forum.asp.

View Code

CVE-2005-4141 EXPLOITDB text WRITEUP

ASPMForum - SQL Injection via harf or baslik Parameter

Multiple SQL injection vulnerabilities in ASPMForum allow remote attackers to execute arbitrary SQL commands via the (1) harf parameter in kullanicilistesi.asp and (2) baslik parameter in forum.asp.

View Code