78 matches found
EUVD-2008-6091
Malware in sbrugna...
EUVD-2008-3285
Malware in sbrugna...
EUVD-2008-3286
Malware in sbrugna...
EUVD-2013-4743
Malware in sbrugna...
EUVD-2008-6090
Malware in sbrugna...
community.socialengine.com Cross Site Scripting vulnerability OBB-3850775
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2012-6720
Multiple cross-site scripting XSS vulnerabilities in SocialEngine before 4.2.4 allow remote attackers to inject arbitrary web script or HTML via the 1 title parameter to music/create, 2 location parameter to events/create, or 3 search parameter to widget/index/contentid/...
CVE-2012-6721
Multiple cross-site request forgery CSRF vulnerabilities in the 1 Forum, 2 Event, and 3 Classifieds plugins in SocialEngine before 4.2.4...
CVE-2012-6720
Multiple cross-site scripting XSS vulnerabilities in SocialEngine before 4.2.4 allow remote attackers to inject arbitrary web script or HTML via the 1 title parameter to music/create, 2 location parameter to events/create, or 3 search parameter to widget/index/contentid/...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in SocialEngine before 4.2.4 allow remote attackers to inject arbitrary web script or HTML via the 1 title parameter to music/create, 2 location parameter to events/create, or 3 search parameter to widget/index/contentid/...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in the 1 Forum, 2 Event, and 3 Classifieds plugins in SocialEngine before 4.2.4...
CVE-2012-6721
Multiple cross-site request forgery CSRF vulnerabilities in the 1 Forum, 2 Event, and 3 Classifieds plugins in SocialEngine before 4.2.4...
CVE-2012-6720
Multiple cross-site scripting XSS vulnerabilities in SocialEngine before 4.2.4 allow remote attackers to inject arbitrary web script or HTML via the 1 title parameter to music/create, 2 location parameter to events/create, or 3 search parameter to widget/index/contentid/...
CVE-2012-6720
CVE-2012-6720 concerns a Cross-Site Scripting (XSS) vulnerability in SocialEngine prior to version 4.2.4. The issue allows remote attackers to inject arbitrary web script or HTML through specific parameters: (1) title to music/create, (2) location to events/create, and (3) search to widget/index/...
CVE-2012-6721
Multiple cross-site request forgery CSRF vulnerabilities in the 1 Forum, 2 Event, and 3 Classifieds plugins in SocialEngine before 4.2.4...
CVE-2012-6721
CVE-2012-6721 describes multiple CSRF vulnerabilities in the SocialEngine platform, affecting the (1) Forum, (2) Event, and (3) Classifieds plugins when running versions earlier than 4.2.4. The connected documents provide the concrete details: the vulnerable software components are the three Soci...
SocialEngine 4.8.9 - SQL Injection
No description provided by source...
SocialEngine 4.8.9 - SQL Injection
Exploit for php platform in category web applications Product: SocialEngine Vendor: Webligo Vulnerable Versions: 4.8.9 and probably prior Tested Version: 4.8.9 Advisory Publication: December 21, 2015 without technical details Vendor Notification: December 21, 2015 Public Disclosure: April 6, 2016...
SocialEngine SQL Injection Vulnerability
SocialEngine is a PHP-based social networking platform that allows the creation of social networks on websites. An injection vulnerability exists in SocialEngine SQL. Due to insufficient filtering of input passed to the "/index.php" script via the "orderby" HTTP GET parameter, an unauthenticated...
SocialEngine 4.8.9 - SQL Injection
SocialEngine 4.8.9 - SQL Injection Advisory ID: HTB23286 Product: SocialEngine Vendor: Webligo Vulnerable Versions: 4.8.9 and probably prior Tested Version: 4.8.9 Advisory Publication: December 21, 2015 without technical details Vendor Notification: December 21, 2015 Public Disclosure: April 6,...