Vulnerabilities > Mole Group
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-03-05 | CVE-2009-4675 | Improper Authentication vulnerability in Mole-Group Gastro Portal (Restaurant Directory) Script admin/admin_info/index.php in the Mole Group Gastro Portal (Restaurant Directory) Script does not require administrative authentication, which allows remote attackers to change the admin password via an unspecified form submission. | 7.5 |
2010-03-05 | CVE-2009-4674 | Credentials Management vulnerability in Mole-Group products admin/admin.php in Mole Group Sky Hunter Airline Ticket Sale Script and Bus Ticket Script allows remote attackers to change an arbitrary password via a modified user_id field. | 7.5 |
2010-03-05 | CVE-2009-4673 | SQL Injection vulnerability in Mole-Group Adult Portal Script SQL injection vulnerability in profile.php in Mole Group Adult Portal Script allows remote attackers to execute arbitrary SQL commands via the user_id parameter. | 7.5 |
2009-06-01 | CVE-2008-6818 | Credentials Management vulnerability in Mole-Group Real Estate Script Mole Group Real Estate Script 1.1 and earlier stores passwords in cleartext, which allows context-dependent attackers to obtain sensitive information. | 5.0 |
2009-06-01 | CVE-2008-6817 | Credentials Management vulnerability in Mole-Group Lastminute Script Mole Group Lastminute Script 4.0 and earlier stores passwords in cleartext, which allows context-dependent attackers to obtain sensitive information. | 5.0 |
2009-03-18 | CVE-2008-6484 | SQL Injection vulnerability in Mole-Group Taxi Calc Dist Script SQL injection vulnerability in login.php in Mole Group Taxi Map Script (aka Taxi Calc Dist Script) allows remote attackers to execute arbitrary SQL commands via the user field. | 7.5 |
2008-11-13 | CVE-2008-5047 | SQL Injection vulnerability in Mole Group Rental Script SQL injection vulnerability in admin/index.php in Mole Group Rental Script allows remote attackers to execute arbitrary SQL commands via the username parameter. | 7.5 |
2008-11-13 | CVE-2008-5046 | SQL Injection vulnerability in Mole Group Pizza Script SQL injection vulnerability in index.php in Mole Group Pizza Script allows remote attackers to execute arbitrary SQL commands via the manufacturers_id parameter. | 7.5 |
2008-07-10 | CVE-2008-3125 | SQL Injection vulnerability in Mole Group Lastminute Script 4.0 SQL injection vulnerability in index.php in Mole Group Lastminute Script 4.0 allows remote attackers to execute arbitrary SQL commands via the cid parameter. | 7.5 |
2008-07-10 | CVE-2008-3124 | SQL Injection vulnerability in Mole Group Hotel Script 1.0 SQL injection vulnerability in index.php in Mole Group Hotel Script 1.0 allows remote attackers to execute arbitrary SQL commands via the file parameter. | 7.5 |