14 matches found
EUVD-2007-2267
Malware in sbrugna...
EUVD-2007-4097
Malware in sbrugna...
EUVD-2011-0530
Malware in sbrugna...
EUVD-2008-2896
Malware in sbrugna...
CVE-2020-25950
Advanced Webhost Billing System 3.7.0 is affected by Cross Site Request Forgery CSRF attacks that can delete a contact from the My Additional Contact page...
Awbs Advanced Webhost Billing System Cross-Site Request Forgery Vulnerability
Awbs Advanced Webhost Billing System is a Php-based web billing management system for managed hosting from Awbs USA. The platform provides web hosting and or domain name registration business services, providing an automated solution for web hosting management. A cross-site request forgery...
CVE-2020-25950
Vulnerability summary (CVE-2020-25950) : A CSRF flaw in Advanced Webhost Billing System 3.7.0 can delete a contact via the My Added Contact page. The affected component is the web application logic handling contact management; the root cause is insufficient validation of request origin for state-...
CVE-2008-2903
SQL injection vulnerability in news.php in Advanced Webhost Billing System AWBS 2.3.3 through 2.7.1, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the viewnews parameter...
Sql injection
SQL injection vulnerability in news.php in Advanced Webhost Billing System AWBS 2.3.3 through 2.7.1, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the viewnews parameter...
Default configuration
Unspecified vulnerability in Advanced Webhost Billing System AWBS before 2.6.0 allows remote authenticated users to obtain configuration data about other dedicated servers via unspecified vectors...
CVE-2007-4112
Multiple SQL injection vulnerabilities in Advanced Webhost Billing System AWBS before 2.6.0, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via unspecified vectors. NOTE: this can be leveraged for XSS attacks that "bypass AWBS's anti-XSS input validation...
CVE-2007-4113
Unspecified vulnerability in Advanced Webhost Billing System AWBS before 2.6.0 allows remote authenticated users to obtain configuration data about other dedicated servers via unspecified vectors...
awbs.txt
AWBS=Advanced Webhost Billing System Exploit; 1.http://site adres/contact.php?action=submit&Name='alert'XSS Vulnerability'%3B&EmailAddress=1&AccountUsername=1&Message=1 2.http://site adres/contact.php?action=submit&Name=1&EmailAddress=1&AccountUsername='alert'XSS Vulnerability'%3B&Message=1...
XSS vulnerability on AWBS
AWBS=Advanced Webhost Billing System Exploit; 1.http://site adres/contact.php?action=submit&Name='scriptalert'XSS Vulnerability'3B/script&EmailAddress=1&AccountUsername=1&Message=1 2.http://site adres/contact.php?action=submit&Name=1&EmailAddress=1&AccountUsername='scriptalert'XSS...