15 matches found
EUVD-2006-5743
Malware in sbrugna...
EUVD-2009-0532
Malware in sbrugna...
EUVD-2006-5745
Malware in sbrugna...
Sql injection
SQL injection vulnerability in frame.php in Rhadrix If-CMS 2.07 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2009-0528
SQL injection vulnerability in frame.php in Rhadrix If-CMS 2.07 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2009-0528
SQL injection vulnerability in frame.php in Rhadrix If-CMS 2.07 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2009-0528
CVE-2009-0528 describes a SQL injection in frame.php of Rhadrix If-CMS 2.07 and earlier, exploitable via the id parameter. Affected software is Rhadrix If-CMS (version 2.07 and earlier); the underlying issue is improper handling of user input in frame.php, enabling remote attackers to execute arb...
CVE-2006-5761
Cross-site scripting XSS vulnerability in index.php in Rhadrix If-CMS 1.01 and 2.07 allows remote attackers to inject arbitrary web script or HTML via the rns parameter...
CVE-2006-5761
Cross-site scripting XSS vulnerability in index.php in Rhadrix If-CMS 1.01 and 2.07 allows remote attackers to inject arbitrary web script or HTML via the rns parameter...
CVE-2006-5761
CVE-2006-5761 describes a cross-site scripting (XSS) vulnerability in Rhadrix If-CMS, specifically in index.php where the rns parameter can be exploited to inject arbitrary web script or HTML. Affected software: Rhadrix If-CMS versions 1.01 through 2.07. Root cause is improper handling of the rns...
CVE-2006-5759
index.php in Rhadrix If-CMS, possibly 1.01 and 2.07, allows remote attackers to obtain the full path of the web server via empty 1 rns or 2 pag arguments, which reveals the path in an error message...
CVE-2006-5759
index.php in Rhadrix If-CMS, possibly 1.01 and 2.07, allows remote attackers to obtain the full path of the web server via empty 1 rns or 2 pag arguments, which reveals the path in an error message...
CVE-2006-5759
The connected PT-2006-6440 entry confirms a path-disclosure vulnerability in Rhadrix If-CMS, affecting versions 1.01–2.07. The issue arises when empty arguments rns[] or pag[] are provided, causing an error message that reveals the web server’s full filesystem path. This can aid an attacker in lo...
PT-2006-6440 · Rhadrix · Rhadrix If-Cms
Name of the Vulnerable Software and Affected Versions: Rhadrix If-CMS versions 1.01 through 2.07 Description: The issue allows remote attackers to obtain the full path of the web server. This is achieved by providing empty arguments, specifically rns or pag, which results in an error message that...
PT-2006-6442 · Rhadrix · Rhadrix If-Cms
Name of the Vulnerable Software and Affected Versions: Rhadrix If-CMS versions 1.01 through 2.07 Description: The issue is related to a cross-site scripting XSS vulnerability. This vulnerability allows remote attackers to inject arbitrary web script or HTML via the rns parameter in the index.php...