14 matches found
EUVD-2008-4469
Malware in sbrugna...
EUVD-2008-4468
Malware in sbrugna...
EUVD-2008-4470
Malware in sbrugna...
CVE-2008-4487
SQL injection vulnerability in ap-save.php in Atarone CMS 1.2.0 allows remote attackers to execute arbitrary SQL commands via the 1 sitename, 2 email, 3 themechosen, 4 hp, 5 cmeta, 6 id, and 7 cjs parameters. NOTE: the provenance of this information is unknown; the details are obtained solely fro...
CVE-2008-4489
Directory traversal vulnerability in ap-save.php in Atarone CMS 1.2.0 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the themechosen parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from thir...
Cross site scripting
Cross-site scripting XSS vulnerability in ap-pages.php in Atarone CMS 1.2.0 allows remote attackers to inject arbitrary web script or HTML via the 1 name and 2 id parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
Directory traversal
Directory traversal vulnerability in ap-save.php in Atarone CMS 1.2.0 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the themechosen parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from thir...
Sql injection
SQL injection vulnerability in ap-save.php in Atarone CMS 1.2.0 allows remote attackers to execute arbitrary SQL commands via the 1 sitename, 2 email, 3 themechosen, 4 hp, 5 cmeta, 6 id, and 7 cjs parameters. NOTE: the provenance of this information is unknown; the details are obtained solely fro...
CVE-2008-4488
Cross-site scripting XSS vulnerability in ap-pages.php in Atarone CMS 1.2.0 allows remote attackers to inject arbitrary web script or HTML via the 1 name and 2 id parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2008-4487
CVE-2008-4487 describes an SQL injection in Atarone CMS 1.2.0, specifically in ap-save.php. The vulnerability allows remote attackers to execute arbitrary SQL commands through the parameters: site_name, email, theme_chosen, hp, c_meta, id, and c_js. The entry notes that provenance is unknown and ...
CVE-2008-4487
SQL injection vulnerability in ap-save.php in Atarone CMS 1.2.0 allows remote attackers to execute arbitrary SQL commands via the 1 sitename, 2 email, 3 themechosen, 4 hp, 5 cmeta, 6 id, and 7 cjs parameters. NOTE: the provenance of this information is unknown; the details are obtained solely fro...
CVE-2008-4489
Directory traversal vulnerability in ap-save.php in Atarone CMS 1.2.0 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the themechosen parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from thir...
CVE-2008-4488
The CVE-2008-4488 entry concerns a Cross-site Scripting (XSS) vulnerability in Atarone CMS 1.2.0. The flaw is located in ap-pages.php, where user-supplied input in the 1) name and 2) id parameters can be injected to execute arbitrary web script or HTML. This is described across multiple sources (...
CVE-2008-4489
CVE-2008-4489 describes a directory traversal vulnerability in Atarone CMS 1.2.0 (ap-save.php). Remote attackers can use directory traversal sequences in the theme_chosen parameter to include and execute arbitrary local files. Exploitation status is not detailed in the provided documents; no reme...