PHP Advanced Transfer Manager 1.30 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/14887/info PHP Advanced Transfer Manager is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues to have arbitra...

PHP Advanced Transfer Manager 1.30 - Multiple Directory Traversal Vulnerabilities

source: https://www.securityfocus.com/bid/14883/info PHP Advanced Transfer Manager is prone to multiple directory traversal vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Exploitation of any of these vulnerabilities could lead to a...

I want to see the code to crack the encrypted pages of the text had the brilliant idea-vulnerability warning-the black bar safety net

font face=Verdanabelieve that most people's machines are equipped with one or more of text, web page editing software, such as:powerful premium software, Dreamweaver MX, Word XP, the system comes with relatively low-level software, NotePad, And WordPad for. And these software exist between the...

[EXPL] VisualBoy Advanced Local Buffer Overflow (Exploit)

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

Advanced Guestbook 2.3.3 upload image bug

TITLE: Advanced Guestbook 2.3.3 upload image error and maybe possible file inclusion! Severity: Well for now I haven't tested it completely but if not patched it may cause a remote command execution and file inclusion. SOFTWARE: Advanced Guestbook 2.3.3 http://www.proxy2.de/ DESCRIPTION: At the...

calendarix.txt

/ Advisorie : 01-0005-15 title: multiple vulnerability Software: Calendarix Advanced Date: 28. April 2005 Web: http://www.calendarix.com/ / - Affected software description: Webcalendar is a web software write in php y mysql - Expoit: Include line 16 admin/caladmintop.php:includeonce...

phpAdvanced.txt

oooo...oooo.oooooooo8.ooooooooooo .8888o..88.888........88..888..88 .88.888o88..888oooooo.....888 .88...8888.........888....888 o88o....88.o88oooo888....o888o Network security team nst.void.ru Title: PHP Advanced Transfer Manager v1.21 Bug found by: nst Date: 06.05.2005 Owner: phpatm.free.fr...

ag231SQL.txt

There is an SQL Injection in Advanced Guestbook 2.3.1 For Example: http://www.yourdomain.com/yourguestbookdirectory/index.php?entry=' or http://www.yourdomain.com/yourguestbookdirectory/index.php?entry=%27 Yours, SpyHat...

Advanced Guestbook User-Agent Header HTML Injection

The remote host is running Advanced Guestbook, a free guestbook written in PHP. The installed version of Advanced Guestbook fails to properly sanitize the 'HTTPUSERAGENT' environment variable before using it in dynamically-generated content. An attacker can exploit this flaw to launch cross-site...

ViRobot Advanced Server 2.0 (addschup) Remote Cookie Exploit

Exploit for linux platform in category remote exploits ============================================================ ViRobot Advanced Server 2.0 addschup Remote Cookie Exploit ============================================================ !/usr/bin/perl ViRobot 2.0 remote cookie exploit - ala addsch...

ViRobot Advanced Server 2.0 (addschup) Remote Cookie Exploit

!/usr/bin/perl ViRobot 2.0 remote cookie exploit - ala addschup copyright Kevin Finisterre kflistsatdigitalmunitiondotcom jdam:/home/kfinisterre ls -al /var/spool/cron/root ls: /var/spool/cron/root: No such file or directory jdam:/home/kfinisterre ls -al /var/spool/cron/root -rw-r--r-- 1 root sta...

ViRobot Advanced Server 2.0 - addschup Remote Cookie

ViRobot Advanced Server 2.0 - addschup Remote Cookie !/usr/bin/perl ViRobot 2.0 remote cookie exploit - ala addschup copyright Kevin Finisterre kflistsatdigitalmunitiondotcom jdam:/home/kfinisterre ls -al /var/spool/cron/root ls: /var/spool/cron/root: No such file or directory...

ViRobot Advanced Server 2.0 - 'addschup' Remote Cookie

!/usr/bin/perl ViRobot 2.0 remote cookie exploit - ala addschup copyright Kevin Finisterre kflistsatdigitalmunitiondotcom jdam:/home/kfinisterre ls -al /var/spool/cron/root ls: /var/spool/cron/root: No such file or directory jdam:/home/kfinisterre ls -al /var/spool/cron/root -rw-r--r-- 1 root sta...

CVE-2005-1864

PHP remote file inclusion vulnerability in caladmintop.php in Calendarix Advanced 1.5 allows remote attackers to execute arbitrary PHP code via the calpath parameter...

CVE-2005-1865

Multiple SQL injection vulnerabilities in Calendarix Advanced 1.5 allow remote attackers to execute arbitrary SQL commands via the catview parameter to 1 calweek.php, 2 calcat.php, or 3 calday.php, or 4 id parameter to calpophols.php...

CVE-2005-1865

Multiple SQL injection vulnerabilities in Calendarix Advanced 1.5 allow remote attackers to execute arbitrary SQL commands via the catview parameter to 1 calweek.php, 2 calcat.php, or 3 calday.php, or 4 id parameter to calpophols.php...

CVE-2005-1865

CVE-2005-1865 describes multiple SQL injection vulnerabilities in Calendarix Advanced 1.5 . Remote attackers can cause arbitrary SQL execution via the following inputs: (1) catview parameter to cal_week.php , (2) cat_view to cal_cat.php , (3) cal_day.php, or (4) id parameter to cal_pophols.php . ...

CVE-2005-1864

Calendarix Advanced

CVE-2005-1866

CVE-2005-1866 affects Calendarix Advanced

CVE-2005-1864

PHP remote file inclusion vulnerability in caladmintop.php in Calendarix Advanced 1.5 allows remote attackers to execute arbitrary PHP code via the calpath parameter...