21 matches found
EUVD-2012-5398
Malware in sbrugna...
EUVD-2016-1748
Malware in sbrugna...
EUVD-2012-2084
Malware in sbrugna...
EUVD-2012-2085
Malware in sbrugna...
CVE-2023-5540
A remote code execution risk was identified in the IMSCP activity. By default this was only available to teachers and managers...
Barangay Management System 代码问题漏洞
Barangay Management System is a database driven system. A security vulnerability exists in Barangay Management System v1.0, which originates from an arbitrary file upload in the activity.php file image upload point of the editing function of the Activity module of the backend management system...
Activity for Drupal Cross-Site Scripting Vulnerability
Drupal is an open source content management system developed by the Drupal community using the PHP language.Activity is one of the Activity modules. A cross-site scripting vulnerability exists in Activity for Drupal version 6.x-1.x. The vulnerability stems from the WEB application lacking proper...
Activity for Drupal Cross-Site Request Forgery Vulnerability
Drupal is an open source content management system developed by the Drupal community using the PHP language.Activity is one of the Activity modules. A cross-site request forgery vulnerability exists in Activity for Drupal versions 6.x-1.x, which can be exploited by an attacker to send unintended...
CVE-2012-2079
A cross-site request forgery CSRF vulnerability in the Activity module 6.x-1.x for Drupal...
Cross site request forgery (csrf)
A cross-site request forgery CSRF vulnerability in the Activity module 6.x-1.x for Drupal...
CVE-2012-2078
Cross-site scripting XSS vulnerability in the Activity module 6.x-1.x for Drupal...
Cross site scripting
Cross-site scripting XSS vulnerability in the Activity module 6.x-1.x for Drupal...
CVE-2012-2079
The CVE-2012-2079 CSRF vulnerability affects the Drupal Activity module (6.x-1.x). The 6.x-1.x branch does not filter output correctly and does not confirm user intent when removing an activity, enabling unauthorized state-changing requests to the server. Impact details in public advisories descr...
CVE-2012-2079
A cross-site request forgery CSRF vulnerability in the Activity module 6.x-1.x for Drupal...
CVE-2012-2078
Activity module 6.x-1.x (Drupal) is affected by a cross-site scripting (XSS) vulnerability due to output not being properly filtered, and an associated issue where removing an activity could trigger a cross-site request forgery (CSRF). Exploitation requires a user with the permissions to access a...
CVE-2012-5480
The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote attackers to bypass intended restrictions on reading other participants' entries via an advanced search...
CVE-2012-5473
The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote authenticated users to read activity entries of a different group's users via an advanced search...
Fedora 16 : moodle-2.0.9-1.fc16 (2012-8325)
CVE-2012-2353 MSA-12-0024: Hidden information access issue CVE-2012-2354 MSA-12-0025: Personal communication access issue CVE-2012-2355 MSA-12-0026: Quiz capability issue CVE-2012-2356 MSA-12-0027: Question bank capability issues CVE-2012-2357 MSA-12-0028: Insecure authentication issue...
Fedora 17 : moodle-2.2.3-1.fc17 (2012-8284)
CVE-2012-2353 MSA-12-0024: Hidden information access issue CVE-2012-2354 MSA-12-0025: Personal communication access issue CVE-2012-2355 MSA-12-0026: Quiz capability issue CVE-2012-2356 MSA-12-0027: Question bank capability issues CVE-2012-2357 MSA-12-0028: Insecure authentication issue...
Drupal Activity 6.x XSS Proof Of Concept
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Exploit for bespoke: Install and enable the Activity and Flag modules Add a new Flag with an arbitrary name at ?q=admin/build/flags/add On the resulting page ?q=admin/build/flags/add/node/name enter "alert'xss';" for the flag Title View the rendered...