46 matches found
EUVD-2006-2497
Malware in sbrugna...
EUVD-2006-2647
Malware in sbrugna...
EUVD-2007-0079
Malware in sbrugna...
EUVD-2005-4254
Malware in sbrugna...
ASPBB 0.4 profile.asp PROFILE_ID Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/15859/info ASPBB is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation...
ASPBB 0.4 topic.asp TID Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/15859/info ASPBB is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation...
ASPBB 0.5.2 profile.asp get Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/18025/info ASPBB is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...
ASPBB 0.5.2 default.asp action Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/18025/info ASPBB is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...
ASPBB 0.4 forum.asp FORUM_ID Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/15859/info ASPBB is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation...
ASPBB 0.5.2 Perform_search.ASP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/18146/info ASPBB is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser...
Active Server Page Bulletin Board Database Disclosure
======================================================================================== | Title : AspBB - Active Server Page Bulletin Board DB Download Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -0021377181886...
AspBB - Active Server Page Bulletin Board DB Download Vulnerability
Exploit for unknown platform in category web applications =================================================================== AspBB - Active Server Page Bulletin Board DB Download Vulnerability ===================================================================...
AspBB - Active Server Page Bulletin Board DB Download Vulnerability
No description provided by source. ======================================================================================== | Title : AspBB - Active Server Page Bulletin Board DB Download Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum ...
AspBB - Active Server Page Bulletin Board Database Disclosure
======================================================================================== | Title : AspBB - Active Server Page Bulletin Board DB Download Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -0021377181886...
AspBB - Active Server Page Bulletin Board Database Disclosure
AspBB - Active Server Page Bulletin Board Database Disclosure ======================================================================================== | Title : AspBB - Active Server Page Bulletin Board DB Download Vulnerability | | Author : indoushka | | email : [email protected] | | Home :...
CVE-2007-0075
AspBB stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing user passwords via a direct request for db/aspbb.mdb...
Improper access control
AspBB stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing user passwords via a direct request for db/aspbb.mdb...
CVE-2007-0075
CVE-2007-0075 affects AspBB. The issue is improper access control that stores sensitive information under the web root, enabling remote attackers to download the database (db/aspbb.mdb) via a direct request. The NVD entry cites a base score of 7.5 (HIGH) with NETWORK access, low attack complexity...
CVE-2007-0075
AspBB stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing user passwords via a direct request for db/aspbb.mdb...
AspBB Remote Password Disclosure
Aria-Security Team Happy New Year!! Aria-Security.com For English Aria-Security.net For Parsi Discovered By: Aria-Security Team Vendor: http://www.aspbb.org/ Risk: Low Type:Remote Password Disclosure PoC: http://TARGET/PATH/db/aspbb.mdb Contact: [email protected]...