21 matches found
EUVD-2006-2615
Malware in sbrugna...
EUVD-2006-6800
Malware in sbrugna...
AlstraSoft Web Host Directory 1.2 - Multiple Vulnerabilities
No description provided by source. ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || || ==============================================================================...
CVE-2008-5650
SQL injection vulnerability in the login directory in AlstraSoft Web Host Directory allows remote attackers to execute arbitrary SQL commands via the pwd parameter...
CVE-2008-5650
SQL injection vulnerability in the login directory in AlstraSoft Web Host Directory allows remote attackers to execute arbitrary SQL commands via the pwd parameter...
AlstraSoft Web Host Directory 1.2 Multiple Vulnerabilities
Exploit for unknown platform in category web applications ========================================================== AlstraSoft Web Host Directory 1.2 Multiple Vulnerabilities ==========================================================...
Alstrasoft Web Host Directory 1.2 - Multiple Vulnerabilities
Alstrasoft Web Host Directory 1.2 - Multiple Vulnerabilities ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || ||...
AlstraSoft Web Host Directory 1.2 Multiple Vulnerabilities
No description provided by source. ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || || ==============================================================================...
Alstrasoft Web Host Directory 1.2 - Multiple Vulnerabilities
============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || || ============================================================================== / | | || | | \ | | / \ | |/ / | | |...
AlstraSoft Web Host Directory (Auth Bypass) SQL Injection Vuln
No description provided by source. AlstraSoft Web Host Directory auth bypass ---------------------------------------------------------- Discovered By: ZoRLu Date: 12.11.2008 Home: www.z0rlu.blogspot.com contact: [email protected] N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA : my bug number...
Alstrasoft Web Host Directory - Authentication Bypass
Alstrasoft Web Host Directory - Authentication Bypass AlstraSoft Web Host Directory auth bypass ---------------------------------------------------------- Discovered By: ZoRLu Date: 12.11.2008 Home: www.z0rlu.blogspot.com contact: [email protected] N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMD...
Alstrasoft Web Host Directory - Authentication Bypass
AlstraSoft Web Host Directory auth bypass ---------------------------------------------------------- Discovered By: ZoRLu Date: 12.11.2008 Home: www.z0rlu.blogspot.com contact: [email protected] N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA : my bug number now: 36 my target bug number: 100...
CVE-2006-6817
AlstraSoft Web Host Directory allows remote attackers to obtain sensitive information by requesting any invalid URI, which reveals the path in an error message, a different vulnerability than CVE-2006-2617...
CVE-2006-6819
AlstraSoft Web Host Directory stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a backup database via a direct request for admin/backup/db...
CVE-2006-6817
AlstraSoft Web Host Directory allows remote attackers to obtain sensitive information by requesting any invalid URI, which reveals the path in an error message, a different vulnerability than CVE-2006-2617...
CVE-2006-2616
SQL injection vulnerability in the search script in 1 AlstraSoft Web Host Directory 1.2, aka 2 HyperStop WebHost Directory 1.2, allows remote attackers to execute arbitrary SQL commands via the uri parameter...
Sql injection
1 AlstraSoft Web Host Directory 1.2, aka 2 HyperStop WebHost Directory 1.2, allows remote attackers to obtain the installation path via an invalid entry in the Username field on the login page, which causes the path to be displayed in an SQL error. NOTE: this issue might be resultant from SQL...
Cross site scripting
Cross-site scripting XSS vulnerability in 1 AlstraSoft Web Host Directory 1.2, aka 2 HyperStop WebHost Directory 1.2, might allow remote attackers to inject arbitrary web script or HTML via the "write a review" box. NOTE: since user reviews do not require administrator privileges, and an...
CVE-2006-2617
Affected products: AlstraSoft Web Host Directory 1.2 (aka HyperStop WebHost Directory 1.2). Root cause: an invalid entry in the Username field on the login page can produce an SQL error that reveals the installation path, potentially due to SQL injection. Impact: partial disclosure of installatio...
CVE-2006-2618
Cross-site scripting XSS vulnerability in 1 AlstraSoft Web Host Directory 1.2, aka 2 HyperStop WebHost Directory 1.2, might allow remote attackers to inject arbitrary web script or HTML via the "write a review" box. NOTE: since user reviews do not require administrator privileges, and an...