64 matches found
CVE-2005-1674
Cross-Site Request Forgery CSRF vulnerability in Help Center Live allows remote attackers to perform actions as the administrator via a link or IMG tag to view.php...
EUVD-2005-3636
Malware in sbrugna...
EUVD-2006-2040
Malware in sbrugna...
EUVD-2010-1673
Malware in sbrugna...
EUVD-2004-2592
Malware in sbrugna...
EUVD-2007-4223
Malware in sbrugna...
EUVD-2004-2594
Malware in sbrugna...
EUVD-2005-1675
Malware in sbrugna...
EUVD-2005-1674
Malware in sbrugna...
CVE-2005-1673
Multiple SQL injection vulnerabilities in Help Center Live allow remote attackers to execute arbitrary SQL commands via the 1 id parameter to index.php, 2 tid parameter to view.php, fid parameter to 3 download.php or 4 chatdownload.php, 5 status parameter to icon.php, TICKETtid parameter to 6...
Help Center Live 1.0/1.2.x Multiple Input Validation Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/13666/info Help Center Live is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Reportedly the application is affected by...
Help Center Live 1.0/1.2/2.0 Module.PHP Local File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15404/info Help Center Live is prone to a local file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to disclose...
Help Center Live 2.1.2 Module.PHP Directory Traversal Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/19256/info Help Center Live is prone to a directory-traversal vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to retrieve arbitrary files from the vulnerable...
Help Center Live 2.0.6 - (module=helpcenter&file=) Local File Inclusion
No description provided by source...
CVE-2010-1652
Directory traversal vulnerability in the HelpCenter module in Help Center Live HCL 2.0.6 and 2.1.7 allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. dot dot in the file parameter to module.php. NOTE: some of these details are obtained from third...
CVE-2010-1652
Directory traversal vulnerability in the HelpCenter module in Help Center Live HCL 2.0.6 and 2.1.7 allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. dot dot in the file parameter to module.php. NOTE: some of these details are obtained from third...
CVE-2010-1652
The CVE-2010-1652 issue affects Help Center Live (HCL) in the HelpCenter module for versions 2.0.6 and 2.1.7. It is a directory traversal (local file inclusion) vulnerability exploited via a dot-dot sequence in the file parameter to module.php, allowing remote attackers to read arbitrary files an...
Help Center Live 2.0.6 Local File Inclusion
Exploit Title: Help Center Live 2.0.6module=helpcenter&file= Local File Inclusion Date: 27-4-2010 Author: 41.w4r10r Software Link : Version: Web Application Tested on: Apcahe/Unix CVE : if exists Dork : inurl:"module=helpcenter" Code :...
Help Center Live class/auth.php check_logout Function Admin Authentication Bypass
The remote host is running Help Center Live, an open source, web-based help desk application written in PHP. The version of Help Center Live installed on the remote host has several administrative scripts that fail to exit if called without valid credentials. An unauthenticated attacker may be ab...
CVE-2007-4240
Help Center Live (hcl) 2.1.3a contains an authentication bypass in the check_logout function of class/auth.php. When administrative credentials are missing, the function redirects but does not exit, enabling an unauthenticated attacker to trigger actions via requests to admin/departments.php, adm...