21 matches found
EUVD-2005-4647
Malware in sbrugna...
EUVD-2006-1557
Malware in sbrugna...
EUVD-2007-4151
Malware in sbrugna...
AL-Caricatier 2.5 - comment.php Cross-Site Scripting
AL-Caricatier 2.5 - comment.php Cross-Site Scripting source: https://www.securityfocus.com/bid/41338/info AL-Caricatier is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code ...
AL-Caricatier 2.5 - 'comment.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/41338/info AL-Caricatier is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context...
alcaricatier-rfi.txt
Discovred By : Hasadya Raed ---------------------------- Contact : [email protected] , [email protected] , [email protected] ---------------------------- Greetz : Muhammed Zeed , Alaadin Gamos ---------------------------- Script: AL-Caricatier,V.2.5 ---------------------------- Dork:...
CVE-2007-4167
PHP remote file inclusion vulnerability in catviewed.php in AL-Caricatier 2.5 allows remote attackers to execute arbitrary PHP code via a URL in the CatName parameter...
Remote file inclusion
PHP remote file inclusion vulnerability in catviewed.php in AL-Caricatier 2.5 allows remote attackers to execute arbitrary PHP code via a URL in the CatName parameter...
CVE-2007-4167
PHP remote file inclusion vulnerability in catviewed.php in AL-Caricatier 2.5 allows remote attackers to execute arbitrary PHP code via a URL in the CatName parameter...
CVE-2007-4167
The CVE-2007-4167 entry describes a PHP remote file inclusion vulnerability in AL-Caricatier 2.5, where an attacker can cause arbitrary PHP code execution by supplying a URL in the CatName parameter of cat_viewed.php. The issue is rooted in including remote content via a user-controlled parameter...
AL-Caricatier V.2.5 Remote File Include
Discovred By : Hasadya Raed ---------------------------- Contact : [email protected] , [email protected] , [email protected] ---------------------------- Greetz : Muhammed Zeed , Alaadin Gamos ---------------------------- Script: AL-Caricatier,V.2.5 ---------------------------- Dork:...
alcaricatier.txt
Hello Vulnerable: AL-Caricatier,V.2.5 http://www.php-ar.com Exploit : http://example.com/AL-Caricatier/viewcaricatier.php?CatName='alertdocument.cookie; http://example.com/AL-Caricatier/viewcaricatier.php?CaricatierID='alertdocument.cookie;...
CVE-2006-1556
Multiple cross-site scripting XSS vulnerabilities in viewcaricatier.php in AL-Caricatier 2.5 allow remote attackers to inject arbitrary web script or HTML via the 1 CatName, 2 CaricatierID, or 3 CatID parameter...
CVE-2006-1556
CVE-2006-1556 affects AL-Caricatier 2.5, specifically the view_caricatier.php component. The issue is multiple cross-site scripting (XSS) vulnerabilities exploitable via the CatName, CaricatierID, or CatID parameters, enabling remote attackers to inject arbitrary script/HTML. The provided sources...
XSS in AL-Caricatier
Hello Vulnerable: AL-Caricatier,V.2.5 http://www.php-ar.com Exploit : http://example.com/AL-Caricatier/viewcaricatier.php?CatName='scriptalertdocument.cookie;/script http://example.com/AL-Caricatier/viewcaricatier.php?CaricatierID='scriptalertdocument.cookie;/script...
AL-Caricatier 2.5 - Multiple Cross-Site Scripting Vulnerabilities
AL-Caricatier 2.5 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/17289/info AL-Caricatier is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacke...
CVE-2005-4653
CVE-2005-4653 affects AL-Caricatier 2.5 and earlier. The vulnerability is in ss.php and allows an unauthenticated attacker to bypass login by a sequence: request view_caricatier.php, then request any file in the admin directory with a cookie_username=admin. Impact: partial confidentiality (per CV...
CVE-2005-4653
Unspecified vulnerability in ss.php in AL-Caricatier 2.5 and earlier allows remote attackers to bypass login authentication by requesting viewcaricatier.php, and then requesting any file in the admin directory with a cookieusername=admin argument...
CVE-2005-4653
Unspecified vulnerability in ss.php in AL-Caricatier 2.5 and earlier allows remote attackers to bypass login authentication by requesting viewcaricatier.php, and then requesting any file in the admin directory with a cookieusername=admin argument...
AL-Caricatier.txt
Vulnerability in AL-Caricatier,V.2.5 Hello... i found a vulneribility in an program called AL-Caricatier it's an arabic program site: http://www.php-ar.com Vulnerability: Login Bypass GoogleDork: inurl:viewcaricatier. php Vunlerability in an included file called ss.php which resides in the admin...