SQL injection, input tampering, and direct database access vulnerabilities exist in the (i)Site web site management system.
09529e884c047a980f6de88ce4553d0f442307b555559fde43d45d3f1dd2dfb5
PHP-G
078015488d26f1dd993259eac78f9ecdbd1e53a886fe906982d804667e0be8e6
Zone-H Security Advisory ZH2003-11SA - Elite News version 1.0.0.0-1.0.0.3 Beta allows direct access to various system files which enables an attacker to retrieve the administrator login name, then utilize that name on another page to set a cookie that will be referenced by yet another page that allows an attacker to post as the administrator.
15b0010175329a204e9968c5e50f2759f6d246f310258aa395f5fc303d0bc6e8