33 matches found
EUVD-2011-4265
Malware in sbrugna...
EUVD-2006-2965
Malware in sbrugna...
EUVD-2011-4266
Malware in sbrugna...
LabWiki Arbitrary PHP File Upload Vulnerability
LabWiki is a meme plugin. A security vulnerability exists in the edit.php file in LabWiki 1.1 and earlier versions, which stems from the program failing to properly validate uploaded user files. A remote attacker can exploit this vulnerability to upload arbitrary PHP files...
Multiple cross-site scripting vulnerabilities in LabWiki
LabWiki is a meme plugin. Multiple cross-site scripting vulnerabilities exist in LabWiki 1.1 and earlier versions. A remote attacker can exploit this vulnerability by sending the 'from' parameter to the index.php file or the 'pageno' parameter to the recentchanges.php file to inject arbitrary web...
Design/Logic Flaw
edit.php in LabWiki 1.1 and earlier does not properly verify uploaded user files, which allows remote authenticated users to upload arbitrary PHP files via a PHP file with a .gif extension in the userfile parameter...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in LabWiki 1.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 from parameter to index.php or the 2 pageno parameter to recentchanges.php...
CVE-2011-4333
Multiple cross-site scripting XSS vulnerabilities in LabWiki 1.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 from parameter to index.php or the 2 pageno parameter to recentchanges.php...
CVE-2011-4334
edit.php in LabWiki 1.1 and earlier does not properly verify uploaded user files, which allows remote authenticated users to upload arbitrary PHP files via a PHP file with a .gif extension in the userfile parameter...
CVE-2011-4333
LabWiki 1.1 and earlier contains cross-site scripting (XSS) vulnerabilities that allow remote attackers to inject arbitrary web script or HTML. The issue is triggered via the (1) from parameter to index.php and (2) page_no parameter to recentchanges.php. The linked sources (NVD/NVD mirrors and CN...
CVE-2011-4333
Multiple cross-site scripting XSS vulnerabilities in LabWiki 1.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 from parameter to index.php or the 2 pageno parameter to recentchanges.php...
CVE-2011-4334
The vulnerability CVE-2011-4334 affects LabWiki 1.1 and earlier: edit.php does not properly validate uploaded user files, allowing remote authenticated users to upload arbitrary PHP files by submitting a PHP file with a .gif extension in the userfile parameter. This is due to inadequate upload va...
CVE-2011-4334
edit.php in LabWiki 1.1 and earlier does not properly verify uploaded user files, which allows remote authenticated users to upload arbitrary PHP files via a PHP file with a .gif extension in the userfile parameter...
labwiki <= 1.1 - Multiple Vulnerabilities
No description provided by source. ------------------------------------------------------------------------ LabWiki = 1.1 Multiple Vulnerabilities ------------------------------------------------------------------------ author............: muuratsalo Revshell.com contact...........:...
XSS Vulnerabilities in LabWiki
Information -------------------- Name : XSS Vulnerabilities in LabWiki Software : LabWiki 1.5 and possibly below. Vendor Homepage : http://www.bioinformatics.org/phplabware/labwiki/index.php Vulnerability Type : Cross-Site Scripting Severity : Critical Researcher : Canberk Bolat Advisory Referenc...
LabWiki Multiple Cross Site Scripting (XSS) Vulnerabilities
LabWiki is prone to multiple cross site scripting vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
LabWiki 1.5 Cross Site Scripting
Information -------------------- Name : XSS Vulnerabilities in LabWiki Software : LabWiki 1.5 and possibly below. Vendor Homepage : http://www.bioinformatics.org/phplabware/labwiki/index.php Vulnerability Type : Cross-Site Scripting Severity : Critical Researcher : Canberk Bolat Advisory Referenc...
LabWiki 1.1 Upload and Edit Source
Exploit for php platform in category web applications +-----------------------------------------+ Exploit Title: LabWiki 1.1 Upload and Edit Source Author: Dr.KroOoZ Software : http://www.bioinformatics.org/phplabware/downloads/LabWiki.zip Tested on: Linux - Windows Dork : You Hacker Dude ;D...
LabWiki Multiple Cross Site Scripting And Arbitrary File Upload Vulnerabilities
LabWiki is prone to multiple cross-site scripting and arbitrary file upload vulnerabilities because the software fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C b...
LabWiki <= 1.1 Multiple Vulnerabilities
------------------------------------------------------------------------ LabWiki = 1.1 Multiple Vulnerabilities ------------------------------------------------------------------------ author............: muuratsalo Revshell.com contact...........: muuratsaloatgmaildotcom download..........:...