Lucene search
+L

144 matches found

CVE
CVE
added 2009/03/13 10:0 a.m.46 views

CVE-2008-6470

CVE-2008-6470 tracks multiple unspecified vulnerabilities in ClanSphere prior to version 2008.2.1 that enable remote attackers to obtain sensitive information via attack vectors tied to a (1) mods/messages/getusers.php and (2) mods/abcode/listimg.php files, according to the NVD entry. The impact ...

5CVSS7AI score0.01489EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2009/03/13 10:0 a.m.21 views

CVE-2008-6470

Multiple unspecified vulnerabilities in ClanSphere before 2008.2.1 allow remote attackers to obtain sensitive information, and possibly have unknown other impact, via vectors related to "javascript insert" and the 1 mods/messages/getusers.php and 2 mods/abcode/listimg.php files. NOTE: some of the...

6.8AI score0.01489EPSS
Exploits0References7
NVD
NVD
added 2008/03/20 10:44 a.m.19 views

CVE-2008-1399

Multiple cross-site scripting XSS vulnerabilities in index.php in Clansphere 2008 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

4.3CVSS5.6AI score0.01232EPSS
Exploits1References3
Prion
Prion
added 2008/03/20 10:44 a.m.22 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in index.php in Clansphere 2008 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

4.3CVSS5.8AI score0.01232EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2008/03/20 10:0 a.m.27 views

CVE-2008-1399

Multiple cross-site scripting XSS vulnerabilities in index.php in Clansphere 2008 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

5.6AI score0.01232EPSS
Exploits1References3
CVE
CVE
added 2008/03/20 10:0 a.m.46 views

CVE-2008-1399

Technical details for CVE-2008-1399 are not publicly provided in the supplied documents. Monitor for updates from official advisories; no concrete vulnerable versions or fixes are disclosed here.

4.3CVSS5.6AI score0.01232EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2008/01/30 10:0 p.m.13 views

CVE-2008-0489

Directory traversal vulnerability in install.php in Clansphere 2007.4.4 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the lang parameter...

5CVSS7.1AI score0.02724EPSS
Exploits1References4
Prion
Prion
added 2008/01/30 10:0 p.m.8 views

Directory traversal

Directory traversal vulnerability in install.php in Clansphere 2007.4.4 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the lang parameter...

5CVSS7.6AI score0.02724EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2008/01/30 9:0 p.m.14 views

CVE-2008-0489

Directory traversal vulnerability in install.php in Clansphere 2007.4.4 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the lang parameter...

7.1AI score0.02724EPSS
Exploits1References4
CVE
CVE
added 2008/01/30 9:0 p.m.34 views

CVE-2008-0489

CVE-2008-0489 describes a directory traversal in install.php of Clansphere 2007.4.4. The vulnerability allows remote attackers to include and execute arbitrary local files by supplying a .. in the lang parameter. Affected component: install.php; vulnerable function/file path handling leads to loc...

5CVSS7.1AI score0.02724EPSS
Exploits1References4Affected Software1
securityvulns
securityvulns
added 2008/01/29 12:0 a.m.72 views

ClanSphere 2007.4.4 Remote File Disclosure Vulnerability.

-------------------------------------------------------------- ClanSphere 2007.4.4 Remote File Disclosure Vulnerability. -------------------------------------------------------------- download : http://sourceforge.net/projects/clansphere/ author : p4imi0 contact : [email protected] exploit :...

0.5AI score
Exploits0
exploitpack
exploitpack
added 2008/01/28 12:0 a.m.14 views

ClanSphere 2007.4.4 - install.php Local File Inclusion

ClanSphere 2007.4.4 - install.php Local File Inclusion source: https://www.securityfocus.com/bid/27471/info ClanSphere is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using directory-traversal...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2008/01/28 12:0 a.m.25 views

clansphere-disclose.txt

-------------------------------------------------------------- ClanSphere 2007.4.4 Remote File Disclosure Vulnerability. -------------------------------------------------------------- download : http://sourceforge.net/projects/clansphere/ author : p4imi0 contact : [email protected] exploit :...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2008/01/28 12:0 a.m.20 views

ClanSphere 2007.4.4 - 'install.php' Local File Inclusion

source: https://www.securityfocus.com/bid/27471/info ClanSphere is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability using directory-traversal strings to access potentially sensitive information that m...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2007/09/25 12:0 a.m.32 views

clansphere-sql.txt

Inclusion Hunter Team http://www.ihteam.net Clansphere 2007.4 Class: SQL Injection Found: 22/09/2007 Remote: Yes Site: http://www.clansphere.net/ Download: http://sourceforge.net/project/showfiles.php?groupid=95430 Vulnerable code: mods/banners/navlist.php...

7.4AI score
Exploits0
NVD
NVD
added 2007/09/24 10:17 p.m.15 views

CVE-2007-5061

SQL injection vulnerability in mods/banners/navlist.php in Clansphere 2007.4 allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php in a banners action...

7.5CVSS8.3AI score0.01169EPSS
Exploits1References6
Prion
Prion
added 2007/09/24 10:17 p.m.21 views

Sql injection

SQL injection vulnerability in mods/banners/navlist.php in Clansphere 2007.4 allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php in a banners action...

7.5CVSS9.1AI score0.01169EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2007/09/24 10:0 p.m.22 views

CVE-2007-5061

SQL injection vulnerability in mods/banners/navlist.php in Clansphere 2007.4 allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php in a banners action...

8.3AI score0.01169EPSS
Exploits1References6
CVE
CVE
added 2007/09/24 10:0 p.m.39 views

CVE-2007-5061

CVE-2007-5061 is a SQL injection in Clansphere 2007.4, specifically for the file mods/banners/navlist.php where the attacker can influence the cat_id parameter passed to index.php in a banners action. The underlying issue is an input-validated vulnerability that enables remote attackers to execut...

7.5CVSS8.3AI score0.01169EPSS
Exploits1References6Affected Software1
seebug.org
seebug.org
added 2007/09/23 12:0 a.m.24 views

Clansphere 2007.4 (cat_id) Remote SQL Injection Vulnerability

No description provided by source. Inclusion Hunter Team http://www.ihteam.net Clansphere 2007.4 Class: SQL Injection Found: 22/09/2007 Remote: Yes Site: http://www.clansphere.net/ Download: http://sourceforge.net/project/showfiles.php?groupid=95430 Author: R00TATI of IHTeam Contact:...

7.1AI score
Exploits0
Rows per page
Query Builder