18 matches found
EUVD-2006-4642
Malware in sbrugna...
CVE-2023-4491
Buffer overflow vulnerability in Easy Address Book Web Server 1.6 version. The exploitation of this vulnerability could allow an attacker to send a very long username string to /searchbook.ghp, asking for the name via a POST request, resulting in arbitrary code execution on the remote machine...
CVE-2023-4492
Vulnerability in Easy Address Book Web Server 1.6 version, affecting the parameters firstname, homephone, lastname, middlename, workaddress, workcity, workcountry, workphone, workstate and workzip of the /addrbook.ghp file, allowing an attacker to inject a JavaScript payload specially designed to...
Cross site scripting
Stored Cross-Site Scripting in Easy Address Book Web Server 1.6 version, through the usersadmin.ghp file that affects multiple parameters such as firstname, homephone, lastname, lastname, middlename, workaddress, workcity, workcountry, workphone, workstate, workzip. This vulnerability allows a...
CVE-2023-4493
CVE-2023-4493 describes a stored XSS in Easy Address Book Web Server 1.6 via the users_admin.ghp file, enabling a remote attacker to inject JavaScript that executes when the target page loads, potentially compromising integrity. Affected parameters include firstname, homephone, lastname, middlena...
CVE-2023-4492 Easy Address Book Web Server XSS vulnerability
Vulnerability in Easy Address Book Web Server 1.6 version, affecting the parameters firstname, homephone, lastname, middlename, workaddress, workcity, workcountry, workphone, workstate and workzip of the /addrbook.ghp file, allowing an attacker to inject a JavaScript payload specially designed to...
CVE-2023-4491
CVE-2023-4491 affects Easy Address Book Web Server 1.6. It is a remote buffer overflow in the /searchbook.ghp API endpoint triggered by sending an overly long username string via POST, leading to arbitrary code execution on the remote host. The CVE is rated 9.8/CRITICAL (CVSS 3.1) with Network at...
CVE-2023-4491 Easy Address Book Web Server Buffer overflow vulnerability
Buffer overflow vulnerability in Easy Address Book Web Server 1.6 version. The exploitation of this vulnerability could allow an attacker to send a very long username string to /searchbook.ghp, asking for the name via a POST request, resulting in arbitrary code execution on the remote machine...
PT-2023-29318 · Unknown · Easy Address Book Web Server
Name of the Vulnerable Software and Affected Versions: Easy Address Book Web Server version 1.6 Description: The issue is a Stored Cross-Site Scripting vulnerability that affects multiple parameters such as firstname, homephone, lastname, middlename, workaddress, workcity, workcountry, workphone,...
Easy Address Book Web Server 1.6 Buffer Overflow / Cross Site Scripting
Exploit Title: Easy Address Book Web Server v1.6 - Multiple Vulnerabilities Discovery by: Rafael Pedrero Discovery Date: 2021-01-10 CVE: CVE-2023-4491, CVE-2023-4492, CVE-2023-4493 Vendor Homepage: http://www.efssoft.com/web-address-book-server.html Software Link : http://www.efssoft.com/eabws.ex...
Easy Address Book Web Server 1.6 - USERID Remote Buffer Overflow
!/usr/bin/python Exploit Title: Easy Address Book Web Server 1.6 - USERID Remote Buffer Overflow Version: 1.6 Date: 2015-08-23 Author: Tracy Turben [email protected] Software Link: http://www.efssoft.com/ Tested on: Win7x32-EN,Win7x64-EN from struct import pack import socket,sys import os...
Easy Address Book Web Server 1.6 Buffer Overflow
!/usr/bin/env python Exploit Title: Easy Address Book Web Server 1.6 stack buffer overflow Date: 19 May 2014 Exploit Author: superkojiman - http://www.techorganic.com Vendor Homepage: http://www.efssoft.com/web-address-book-server.html Software Link: http://www.efssoft.com/eabws.exe Version: 1.6...
Easy Address Book Web Server 1.6 - Remote Stack Buffer Overflow
Easy Address Book Web Server 1.6 - Remote Stack Buffer Overflow !/usr/bin/env python Exploit Title: Easy Address Book Web Server 1.6 stack buffer overflow Date: 19 May 2014 Exploit Author: superkojiman - http://www.techorganic.com Vendor Homepage: http://www.efssoft.com/web-address-book-server.ht...
efsStream.txt
/ ========================================================================== 0-day Alternative File Stream Exploit for EFS Easy Address Book Web Server =========================================================================== EFS' Easy Address Book Web Server is vulnerable to file stream exploi...
EFS Easy Address Book Web Server 1.2 - Remote File Stream
EFS Easy Address Book Web Server 1.2 - Remote File Stream / ========================================================================== 0-day Alternative File Stream Exploit for EFS Easy Address Book Web Server =========================================================================== EFS' Easy...
EFS Easy Address Book Web Server <= 1.2 Remote File Stream Exploit
Exploit for unknown platform in category remote exploits ================================================================== EFS Easy Address Book Web Server GLinares.code at gmail dot com This tool demonstrates EFS' Easy Address Book Web Server Vulnerability to Alternative Data Stream GET request...
eabweb.txt
Easy Address Book Web Server Format String Vulnerability Software: Easy Address Book Web Server Version: 1.2 Website: http://www.efssoft.com/ Description: Easy Address Book Web Server is a Web Address Book software that allows users to view, search, add, edit, or administer address books easily...
Easy Address Book Web Server Format String Vulnerability
Easy Address Book Web Server Format String Vulnerability Software: Easy Address Book Web Server Version: 1.2 Website: http://www.efssoft.com/ Description: Easy Address Book Web Server is a Web Address Book software that allows users to view, search, add, edit, or administer address books easily...