EUVD-2002-1709

Malware in sbrugna...

CVE-2025-8237

A vulnerability was found in code-projects Exam Form Submission 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/updates1.php. The manipulation of the argument credits leads to sql injection. The attack may be initiated remotely. The exploit has be...

Wavlink WL-WN531P3 操作系统命令注入漏洞

The WAVLINK WL-WN531P3 is a wireless router from China's RuiYin Technology WAVLINK. The Wavlink WL-WN531P3 router suffers from an operating system command injection vulnerability that allows attackers to achieve unauthorized remote code execution via a malicious POST request to /cgi-bin/adm.cgi...

LinksCaffe 2.0/3.0 Authentication Bypass Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/19763/info LinksCaffe is prone to an authentication-bypass vulnerability because of a lack of required authentication on the application's administrative script. An attacker can use administrative functions simply by...

Benja CMS 0.1 /admin/admin_new_submenu.php URL XSS

No description provided by source. source: http://www.securityfocus.com/bid/29884/info The 'benja CMS' program is prone to multiple vulnerabilities because it fails to adequately validate input and restrict access. These issues include three cross-site scripting issues, an arbitrary-file-upload...

Benja CMS 0.1 /admin/admin_edit_submenu.php URL XSS

No description provided by source. source: http://www.securityfocus.com/bid/29884/info The 'benja CMS' program is prone to multiple vulnerabilities because it fails to adequately validate input and restrict access. These issues include three cross-site scripting issues, an arbitrary-file-upload...

Benja CMS 0.1 - '/admin/admin_edit_submenu.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/29884/info The 'benja CMS' program is prone to multiple vulnerabilities because it fails to adequately validate input and restrict access. These issues include three cross-site scripting issues, an arbitrary-file-upload issue, and a vulnerability that...

CVE-2002-1730

ASPjar Guestbook 1.00 allows remote attackers to delete arbitrary messages accessing the delete.asp administrative script with certain cookie values set to "true"...

Active Server Corner ASP Calendar 1.0 - Administrative Access

source: https://www.securityfocus.com/bid/11931/info ASP Calendar is reported prone to an unauthorized administrative access vulnerability. An unauthorized remote attacker can access an administrative script and potentially gain administrative access to the application. It is believed that this...

CVE-2002-1730

ASPjar Guestbook 1.00 allows remote attackers to delete arbitrary messages accessing the delete.asp administrative script with certain cookie values set to "true"...

Phorum 3.x - PHP Configuration Disclosure

source: https://www.securityfocus.com/bid/1985/info Phorum is a PHP based web forums package. Due to an error in the implementation of forum selection in administrative scripts, any user can view the any PHP script on the target host. This is due to user-supplied input being referenced as a...

CVE-2000-0631

An administrative script from IIS 3.0, later included in IIS 4.0 and 5.0, allows remote attackers to cause a denial of service by accessing the script without a particular argument, aka the "Absent Directory Browser Argument" vulnerability...