EUVD-2008-6850

Malware in sbrugna...

EUVD-2008-6851

Malware in sbrugna...

ASP Forum Script messages.asp message_id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/32571/info ASP Forum Script is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an...

ASP Forum Script new_message.asp forum_id Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/32571/info ASP Forum Script is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an...

ASP Forum Script messages.asp forum_id Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/32571/info ASP Forum Script is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an...

CVE-2008-6890

SQL injection vulnerability in messages.asp in ASP Forum Script allows remote attackers to execute arbitrary SQL commands via the messageid parameter...

Sql injection

SQL injection vulnerability in messages.asp in ASP Forum Script allows remote attackers to execute arbitrary SQL commands via the messageid parameter...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in ASP Forum Script allow remote attackers to inject arbitrary web script or HTML via the 1 forumid parameter to a newmessage.asp and b messages.asp, and the 2 query string to default.asp...

CVE-2008-6891

Multiple cross-site scripting XSS vulnerabilities in ASP Forum Script allow remote attackers to inject arbitrary web script or HTML via the 1 forumid parameter to a newmessage.asp and b messages.asp, and the 2 query string to default.asp...

CVE-2008-6890

CVE-2008-6890 describes an SQL injection vulnerability in the ASP Forum Script’s messages.asp, exploitable via the message_id parameter. The affected component is the ASP Forum Script’s messaging functionality; the root cause is improper handling of user-supplied input in message_id, enabling an ...

CVE-2008-6891

Multiple cross-site scripting XSS vulnerabilities in ASP Forum Script allow remote attackers to inject arbitrary web script or HTML via the 1 forumid parameter to a newmessage.asp and b messages.asp, and the 2 query string to default.asp...

CVE-2008-6890

SQL injection vulnerability in messages.asp in ASP Forum Script allows remote attackers to execute arbitrary SQL commands via the messageid parameter...

CodeAvalanche FreeForum - Database Disclosure

FreeForum Database Disclosure Vulnerability © Ghost Hacker - REAL-H.COM Author : Ghost Hacker Homepage : http://Real-h.com Contact Me : Ghost-r00tatHotmaildotcom Name Script : FreeForum Download : http://www.truecontent.info/codeavalanche/asp-forum-script.php Exploit...

ASP Forum Script - messages.asp?message_id SQL Injection

ASP Forum Script - messages.asp?messageid SQL Injection source: https://www.securityfocus.com/bid/32571/info ASP Forum Script is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these...

ASP Forum Script - messages.asp?forum_id Cross-Site Scripting

ASP Forum Script - messages.asp?forumid Cross-Site Scripting source: https://www.securityfocus.com/bid/32571/info ASP Forum Script is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting...

ASP Forum Script - 'messages.asp?forum_id' Cross-Site Scripting

source: https://www.securityfocus.com/bid/32571/info ASP Forum Script is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based...

ASP Forum Script - 'new_message.asp?forum_id' Cross-Site Scripting

source: https://www.securityfocus.com/bid/32571/info ASP Forum Script is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based...

aspforum-cmsqlxss.txt

--------------------------------------------------------- Portal Name: ASP Forum Script Vendor : http://codetoad.com/demos/forum/ Author : PouyaServer , [email protected] Vulnerability : CM,XSS,SQL --------------------------------------------------------- SQL:...

ASP Forum Script - default.asp Query String Cross-Site Scripting

ASP Forum Script - default.asp Query String Cross-Site Scripting source: https://www.securityfocus.com/bid/32571/info ASP Forum Script is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data...

ASP Forum Script - new_message.asp?forum_id Cross-Site Scripting

ASP Forum Script - newmessage.asp?forumid Cross-Site Scripting source: https://www.securityfocus.com/bid/32571/info ASP Forum Script is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploitin...