21 matches found
EUVD-2011-5103
Malware in sbrugna...
EUVD-2008-1940
Malware in sbrugna...
CVE-2011-5204
Akiva WebBoard 8.x stores passwords in plaintext, which allows local users to obtain sensitive information by reading from the database...
Akiva WebBoard 8.x SQL Injection Vulnerability
No description provided by source. Exploit Title: Akiva Webboard 8.x SQL Injection + Plaintext Passwords in Profiles. Google Dork: /Powered by WebBoard 8/ Date: 30.12.2011 Author: Alexander Fuchs Software Link: http://www.akiva.com/default.asp?l=1&id=8 Version: 8.x Tested on: Windows, Linux. CVE ...
Information disclosure
Akiva WebBoard 8.x stores passwords in plaintext, which allows local users to obtain sensitive information by reading from the database...
CVE-2011-5203
SQL injection vulnerability in WB/Default.asp in Akiva WebBoard before 8 SR 1 allows remote attackers to execute arbitrary SQL commands via the name parameter. NOTE: some of these details are obtained from third party information...
Sql injection
SQL injection vulnerability in WB/Default.asp in Akiva WebBoard before 8 SR 1 allows remote attackers to execute arbitrary SQL commands via the name parameter. NOTE: some of these details are obtained from third party information...
CVE-2011-5204
Akiva WebBoard 8.x stores passwords in plaintext, which allows local users to obtain sensitive information by reading from the database...
CVE-2011-5204
Akiva WebBoard 8.x stores passwords in plaintext, which allows local users to obtain sensitive information by reading from the database...
CVE-2011-5203
CVE-2011-5203 concerns a SQL injection in Akiva WebBoard’s WB/Default.asp before version 8 SR 1, exploitable remotely via the name parameter. Affected component is WebBoard’s server-side script; underlying issue is improper input handling enabling arbitrary SQL execution. NVD reports a CVSS v2 ba...
CVE-2011-5204
This CVE concerns Akiva WebBoard 8.x, where passwords are stored in plaintext in the database. The underlying issue is plaintext credential storage, enabling local users to read sensitive information by accessing the database. Practical impact is limited to local access scenarios as no remote/exp...
CVE-2011-5203
SQL injection vulnerability in WB/Default.asp in Akiva WebBoard before 8 SR 1 allows remote attackers to execute arbitrary SQL commands via the name parameter. NOTE: some of these details are obtained from third party information...
Akiva WebBoard 8. x SQL injection flaws and fixes-vulnerability warning-the black bar safety net
Title: Akiva Webboard 8. x SQL Injection + Plaintext Passwords in Profiles. Author: Alexander Fuchs www.2cto.com Download address: http://www.akiva.com/default.asp?l=1&id=8 Affected versions: 8. x Test platform: Windows, Linux. It is possible to login as administrator with admin'-- as the usernam...
Akiva WebBoard 8.x SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Akiva Webboard 8.x SQL Injection + Plaintext Passwords in Profiles. Google Dork: " /Powered by WebBoard 8"/ Date: 30.12.2011 Author: Alexander Fuchs Software Link: http://www.akiva.com/default.asp?l=1&id=8 Version: 8.x Tested on...
Akiva WebBoard 8.x - SQL Injection
Akiva WebBoard 8.x - SQL Injection Exploit Title: Akiva Webboard 8.x SQL Injection + Plaintext Passwords in Profiles. Google Dork: " /Powered by WebBoard 8"/ Date: 30.12.2011 Author: Alexander Fuchs Software Link: http://www.akiva.com/default.asp?l=1&id=8 Version: 8.x Tested on: Windows, Linux. C...
Akiva WebBoard 8.x - SQL Injection
Exploit Title: Akiva Webboard 8.x SQL Injection + Plaintext Passwords in Profiles. Google Dork: " /Powered by WebBoard 8"/ Date: 30.12.2011 Author: Alexander Fuchs Software Link: http://www.akiva.com/default.asp?l=1&id=8 Version: 8.x Tested on: Windows, Linux. CVE : Nope. It is possible to login ...
Akiva Webboard SQL Injection
Hey, this is my first time that i report a vulnerability to a mailing list. The problem on the Akiva Webboard is, that you can login as Administrator with admin'-- SQL Injection and if you go to the adminprofil you can see the Adminpasswort in the HTML code. The current version is 9. I do only kn...
CVE-2008-1941
Cross-site scripting XSS vulnerability in the profile update feature in Akiva WebBoard 8.0 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors in the form field. NOTE: the provenance of this information is unknown; the details are obtained solely from...
Cross site scripting
Cross-site scripting XSS vulnerability in the profile update feature in Akiva WebBoard 8.0 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors in the form field. NOTE: the provenance of this information is unknown; the details are obtained solely from...
CVE-2008-1941
CVE-2008-1941 describes a cross-site scripting (XSS) vulnerability in the profile update feature of Akiva WebBoard 8.0. The issue allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors in the update form field, due to inadequate input handling. The affect...