23 matches found
EUVD-2006-6067
Malware in sbrugna...
EUVD-2007-1768
Malware in sbrugna...
EUVD-2007-1767
Malware in sbrugna...
aBitWhizzy whizzypic.php d Variable Traversal Arbitrary Directory Listing
No description provided by source. source: http://www.securityfocus.com/bid/23167/info aBitWhizzy is prone to multiple cross-site scripting and directory-traversal vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker could exploit these...
aBitWhizzy whizzylink.php d Variable Traversal Arbitrary Directory Listing
No description provided by source. source: http://www.securityfocus.com/bid/23167/info aBitWhizzy is prone to multiple cross-site scripting and directory-traversal vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker could exploit these...
CVE-2007-1773
Multiple directory traversal vulnerabilities in aBitWhizzy allow remote attackers to list arbitrary directories via a .. dot dot in the d parameter to 1 whizzery/whizzypic.php or 2 whizzery/whizzylink.php, different vectors than CVE-2006-6384...
CVE-2007-1774
Multiple cross-site scripting XSS vulnerabilities in aBitWhizzy allow remote attackers to inject arbitrary web script or HTML via the d parameter to 1 whizzery/whizzypic.php or 2 whizzery/whizzylink.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in aBitWhizzy allow remote attackers to inject arbitrary web script or HTML via the d parameter to 1 whizzery/whizzypic.php or 2 whizzery/whizzylink.php...
CVE-2007-1774
Multiple cross-site scripting XSS vulnerabilities in aBitWhizzy allow remote attackers to inject arbitrary web script or HTML via the d parameter to 1 whizzery/whizzypic.php or 2 whizzery/whizzylink.php...
CVE-2007-1774
CVE-2007-1774 describes multiple cross-site scripting (XSS) vulnerabilities in the web app aBitWhizzy . The issue arises via the d parameter to two scripts: whizzery/whizzypic.php and whizzery/whizzylink.php , enabling remote attackers to inject arbitrary web script or HTML. The sources consisten...
CVE-2007-1773
CVE-2007-1773 corresponds to multiple directory traversal vulnerabilities in aBitWhizzy, allowing remote attackers to enumerate arbitrary directories via a dot-dot in the d parameter to whizzery/whizzypic.php or whizzery/whizzylink.php (distinct from CVE-2006-6384). Affected component is aBitWhiz...
abitwhizzy-traverse.txt
aBitWhizzy traversal folder enumeration and XSS vendor url: http://www.unverse.net/abitwhizzy/ Advisore:http://lostmon.blogspot.com/2007/03/ abitwhizzy-traversal-folder-enumeration.html vendor notify:YES exploit include:YES aBitWhizzy is a php script that uses whizzywig.js to create and edit web...
aBitWhizzy - whizzypic.php?d Traversal Arbitrary Directory Listing
aBitWhizzy - whizzypic.php?d Traversal Arbitrary Directory Listing source: https://www.securityfocus.com/bid/23167/info aBitWhizzy is prone to multiple cross-site scripting and directory-traversal vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An...
aBitWhizzy - whizzylink.php?d Traversal Arbitrary Directory Listing
aBitWhizzy - whizzylink.php?d Traversal Arbitrary Directory Listing source: https://www.securityfocus.com/bid/23167/info aBitWhizzy is prone to multiple cross-site scripting and directory-traversal vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An...
aBitWhizzy - 'whizzypic.php?d' Traversal Arbitrary Directory Listing
source: https://www.securityfocus.com/bid/23167/info aBitWhizzy is prone to multiple cross-site scripting and directory-traversal vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker could exploit these vulnerabilities to view the directory...
aBitWhizzy - 'whizzylink.php?d' Traversal Arbitrary Directory Listing
source: https://www.securityfocus.com/bid/23167/info aBitWhizzy is prone to multiple cross-site scripting and directory-traversal vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker could exploit these vulnerabilities to view the directory...
abittraversed.txt
vendor site: http://www.unverse.net/abitwhizzy/ product : aBitWhizzy bug:local file include global risk : high http://site.com/abitwhizzy.php?f=../../../../../../../etc/passwd laurent gaffié & benjamin mossé http://s-a-p.ca/ contact: [email protected]...
CVE-2006-6084
CVE-2006-6084 is a directory traversal in abitwhizzy.php of aBitWhizzy that lets remote attackers read arbitrary files via a .. in the f parameter. The PTSecurity entry reiterates the vulnerability and notes affected software without specifying fixed versions, and the NVD entry provides the same ...
aBitWhizzy (abitwhizzy.php) Information Disclosure Vulnerability
No description provided by source. aBitWhizzy local file include vendor site: http://www.unverse.net/abitwhizzy/ product : aBitWhizzy bug:local file include global risk : high http://site.com/abitwhizzy.php?f=../../../../../../../etc/passwd laurent gaffié & benjamin mossé http://s-a-p.ca/ contact...
aBitWhizzy [local file include]
vendor site: http://www.unverse.net/abitwhizzy/ product : aBitWhizzy bug:local file include global risk : high http://site.com/abitwhizzy.php?f=../../../../../../../etc/passwd laurent gaffi & benjamin moss http://s-a-p.ca/ contact: [email protected]...