EUVD-2008-5623

Malware in sbrugna...

CVE-2008-5654

SQL injection vulnerability in the loginADP function in ajaxp.php in MyioSoft EasyCalendar 4.0 allows remote attackers to execute arbitrary SQL commands via the rsargs parameter, as reachable through the username parameter, a different vector than CVE-2008-1344. NOTE: some of these details are...

Sql injection

Multiple SQL injection vulnerabilities in MyioSoft EasyBookMarker 4.0 allow remote attackers to execute arbitrary SQL commands via the 1 deletefolder and 2 deletelink parameters to unspecified vectors, possibly to a plugins/bookmarker/bookmarkerbackend.php or b ajaxp.php, different vectors than...

Sql injection

SQL injection vulnerability in the loginADP function in ajaxp.php in MyioSoft EasyBookMarker 4.0 allows remote attackers to execute arbitrary SQL commands via the rsargs parameter, as reachable through the username parameter. NOTE: some of these details are obtained from third party information...

CVE-2008-5655

MyioSoft EasyBookMarker 4.0 is affected by CVE-2008-5655 and related CVE-2008-5654, with concrete details describing SQL injection in the loginADP function pathway. Specifically, both CVEs reference vulnerabilities in EasyCalendar/EasyBookMarker components where the parameters (1) delete_folder a...

CVE-2008-5654

Summary (CVE-2008-5654): SQL injection vulnerability in the loginADP function of ajaxp.php in MyioSoft EasyCalendar 4.0 (and earlier per related CVE-2008-1344) allows remote attackers to execute arbitrary SQL commands via the rsargs parameter, reachable through the username parameter. This is a d...

CVE-2008-5652

The CVE-2008-5652 entry concerns MyioSoft EasyBookMarker 4.0. Affected component: loginADP function in ajaxp.php. Root cause: SQL injection via the rsargs parameter, reachable through the username parameter, enabling remote SQL command execution. Exploit details in sources are provided, but expli...