24 matches found
EUVD-2009-0428
Malware in sbrugna...
EUVD-2009-2220
Malware in sbrugna...
EUVD-2008-2409
Malware in sbrugna...
EUVD-2008-3833
Malware in sbrugna...
AN Guestbook 0.4 - 'send_email.php' Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/29254/info AN Guestbook ANG is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser o...
AN Guestbook Local File Inclusion Vulnerability
AN Guestbook is prone to Local File Inclusion vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
AN Guestbook Local File Inclusion Vulnerability
This host is running AN Guestbook and is prone to Local File Inclusion vulnerability. OpenVAS Vulnerability Test $Id: gbanguestbooklfivuln.nasl 4865 2016-12-28 16:16:43Z teissa $ AN Guestbook Local File Inclusion Vulnerability Authors: Nikita MR Copyright: Copyright c 2009 Greenbone Networks GmbH...
AN Guestbook Detection
This script detects the installed version of AN Guestbook. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2009-2224
Directory traversal vulnerability in ang/shared/flags.php in AN Guestbook 0.7.8, when registerglobals is enabled, allows remote attackers to read arbitrary files via a .. dot dot in the glang parameter...
Directory traversal
Directory traversal vulnerability in ang/shared/flags.php in AN Guestbook 0.7.8, when registerglobals is enabled, allows remote attackers to read arbitrary files via a .. dot dot in the glang parameter...
CVE-2009-2224
Directory traversal vulnerability in ang/shared/flags.php in AN Guestbook 0.7.8, when registerglobals is enabled, allows remote attackers to read arbitrary files via a .. dot dot in the glang parameter...
CVE-2009-2224
CVE-2009-2224 describes a Local File Inclusion (LFI) in AN Guestbook 0.7.8 via a directory-traversal flaw in ang/shared/flags.php when register_globals is enabled. The issue allows reading arbitrary files by supplying .. in the g_lang parameter. Affected software is AN Guestbook (version 0.7.8); ...
AN Guestbook 0.7.8 Local File Inclusion
┌┌─────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └─────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An Unimaginable...
CVE-2009-0424
Cross-site scripting XSS vulnerability in sign1.php in AN Guestbook ANG before 0.7.7 allows remote attackers to inject arbitrary web script or HTML via the country parameter, which is not properly handled in 1 administrator/manage.php or 2 administrator/trash.php. NOTE: some of these details are...
Cross site scripting
Cross-site scripting XSS vulnerability in sign1.php in AN Guestbook ANG before 0.7.7 allows remote attackers to inject arbitrary web script or HTML via the country parameter, which is not properly handled in 1 administrator/manage.php or 2 administrator/trash.php. NOTE: some of these details are...
CVE-2009-0424
Cross-site scripting XSS vulnerability in sign1.php in AN Guestbook ANG before 0.7.7 allows remote attackers to inject arbitrary web script or HTML via the country parameter, which is not properly handled in 1 administrator/manage.php or 2 administrator/trash.php. NOTE: some of these details are...
CVE-2009-0424
The CVE-2009-0424 entry concerns AN Guestbook (ANG) prior to version 0.7.7. The vulnerability is a Cross‑Site Scripting (XSS) in sign1.php where the country parameter is not properly sanitized, enabling an attacker to inject arbitrary script/HTML via affected paths (administrator/manage.php or ad...
CVE-2008-3847
Multiple cross-site scripting XSS vulnerabilities in AN Guestbook ANG before 0.7.6 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2008-3847
Multiple cross-site scripting XSS vulnerabilities in AN Guestbook ANG before 0.7.6 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2008-2414
Cross-site scripting XSS vulnerability in sendemail.php in AN Guestbook ANG 0.4 allows remote attackers to inject arbitrary web script or HTML via the postid parameter...