144 matches found
CVE-2008-6470
CVE-2008-6470 tracks multiple unspecified vulnerabilities in ClanSphere prior to version 2008.2.1 that enable remote attackers to obtain sensitive information via attack vectors tied to a (1) mods/messages/getusers.php and (2) mods/abcode/listimg.php files, according to the NVD entry. The impact ...
CVE-2008-6470
Multiple unspecified vulnerabilities in ClanSphere before 2008.2.1 allow remote attackers to obtain sensitive information, and possibly have unknown other impact, via vectors related to "javascript insert" and the 1 mods/messages/getusers.php and 2 mods/abcode/listimg.php files. NOTE: some of the...
CVE-2008-1399
Multiple cross-site scripting XSS vulnerabilities in index.php in Clansphere 2008 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in index.php in Clansphere 2008 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2008-1399
Multiple cross-site scripting XSS vulnerabilities in index.php in Clansphere 2008 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2008-1399
Technical details for CVE-2008-1399 are not publicly provided in the supplied documents. Monitor for updates from official advisories; no concrete vulnerable versions or fixes are disclosed here.
CVE-2008-0489
Directory traversal vulnerability in install.php in Clansphere 2007.4.4 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the lang parameter...
Directory traversal
Directory traversal vulnerability in install.php in Clansphere 2007.4.4 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the lang parameter...
CVE-2008-0489
Directory traversal vulnerability in install.php in Clansphere 2007.4.4 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the lang parameter...
CVE-2008-0489
CVE-2008-0489 describes a directory traversal in install.php of Clansphere 2007.4.4. The vulnerability allows remote attackers to include and execute arbitrary local files by supplying a .. in the lang parameter. Affected component: install.php; vulnerable function/file path handling leads to loc...
ClanSphere 2007.4.4 Remote File Disclosure Vulnerability.
-------------------------------------------------------------- ClanSphere 2007.4.4 Remote File Disclosure Vulnerability. -------------------------------------------------------------- download : http://sourceforge.net/projects/clansphere/ author : p4imi0 contact : [email protected] exploit :...
ClanSphere 2007.4.4 - install.php Local File Inclusion
ClanSphere 2007.4.4 - install.php Local File Inclusion source: https://www.securityfocus.com/bid/27471/info ClanSphere is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using directory-traversal...
clansphere-disclose.txt
-------------------------------------------------------------- ClanSphere 2007.4.4 Remote File Disclosure Vulnerability. -------------------------------------------------------------- download : http://sourceforge.net/projects/clansphere/ author : p4imi0 contact : [email protected] exploit :...
ClanSphere 2007.4.4 - 'install.php' Local File Inclusion
source: https://www.securityfocus.com/bid/27471/info ClanSphere is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using directory-traversal strings to access potentially sensitive information that m...
clansphere-sql.txt
Inclusion Hunter Team http://www.ihteam.net Clansphere 2007.4 Class: SQL Injection Found: 22/09/2007 Remote: Yes Site: http://www.clansphere.net/ Download: http://sourceforge.net/project/showfiles.php?groupid=95430 Vulnerable code: mods/banners/navlist.php...
CVE-2007-5061
SQL injection vulnerability in mods/banners/navlist.php in Clansphere 2007.4 allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php in a banners action...
Sql injection
SQL injection vulnerability in mods/banners/navlist.php in Clansphere 2007.4 allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php in a banners action...
CVE-2007-5061
SQL injection vulnerability in mods/banners/navlist.php in Clansphere 2007.4 allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php in a banners action...
CVE-2007-5061
CVE-2007-5061 is a SQL injection in Clansphere 2007.4, specifically for the file mods/banners/navlist.php where the attacker can influence the cat_id parameter passed to index.php in a banners action. The underlying issue is an input-validated vulnerability that enables remote attackers to execut...
Clansphere 2007.4 (cat_id) Remote SQL Injection Vulnerability
No description provided by source. Inclusion Hunter Team http://www.ihteam.net Clansphere 2007.4 Class: SQL Injection Found: 22/09/2007 Remote: Yes Site: http://www.clansphere.net/ Download: http://sourceforge.net/project/showfiles.php?groupid=95430 Author: R00TATI of IHTeam Contact:...