EUVD-2016-2278

Malware in sbrugna...

EUVD-2016-2277

Malware in sbrugna...

Menubook plugin cross-site request forgery vulnerability

Menubook plugin for baserCMS is a menu list plugin for baserCMS. A cross-site request forgery vulnerability exists in Menubook plugin for baserCMS versions prior to 0.9.3, which allows remote attackers to hijack administrars authentication...

Menubook plugin cross-site scripting vulnerability

Menubook plugin for baserCMS is a menu list plugin for baserCMS. A cross-site scripting vulnerability in Menubook plugin for baserCMS before 0.9.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2016-1174

Cross-site request forgery CSRF vulnerability in the Menubook plugin before 0.9.3 for baserCMS allows remote attackers to hijack the authentication of administrators...

CVE-2016-1174

Cross-site request forgery CSRF vulnerability in the Menubook plugin before 0.9.3 for baserCMS allows remote attackers to hijack the authentication of administrators...

CVE-2016-1173

Cross-site scripting XSS vulnerability in the Menubook plugin before 0.9.3 for baserCMS allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2016-1173

Cross-site scripting XSS vulnerability in the Menubook plugin before 0.9.3 for baserCMS allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Cross site scripting

Cross-site scripting XSS vulnerability in the Menubook plugin before 0.9.3 for baserCMS allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in the Menubook plugin before 0.9.3 for baserCMS allows remote attackers to hijack the authentication of administrators...

CVE-2016-1174

Cross-site request forgery CSRF vulnerability in the Menubook plugin before 0.9.3 for baserCMS allows remote attackers to hijack the authentication of administrators...

CVE-2016-1173

The CVE-2016-1173 issue affects the Menubook plugin for baserCMS prior to 0.9.3, described as a Cross-Site Scripting (XSS) vulnerability that allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. The vulnerability originates in the Menubook plugin’s handling of i...

CVE-2016-1174

CVE-2016-1174 affects the Menubook plugin for baserCMS, versions prior to 0.9.3. The vulnerability is a CSRF flaw in the plugin that allows remote attackers to hijack the authentication of administrators. The affected component is the Menubook plugin; root cause is CSRF in that plugin. Exploitati...

baserCMS plugin "Menubook Plugin" vulnerable to cross-site request forgery

Overview baserCMS plugin "Menubook Plugin" contains a cross-site request forgery vulnerability. CWE-352 Takaesu Isao of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact A...

baserCMS plugin "Menubook Plugin" vulnerable to cross-site scripting

Overview baserCMS plugin "Menubook Plugin" contains a cross-site scripting vulnerability. CWE-79 Takaesu Isao of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact An...

JVN#26627848: baserCMS plugin "Menubook Plugin" multiple vulnerabilities

baserCMS plugin "Menubook Plugin" contains multiple vulnerabilities: Cross-site scripting CWE-79 - CVE-2016-1169 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N| Base Score: 6.1 CVSS v2| AV:N/AC:L/Au:S/C:N/I:P/A:N| Base Score: 4.0 Cross-site request forger...