23 matches found
EUVD-2008-4189
Malware in sbrugna...
EUVD-2008-4188
Malware in sbrugna...
EUVD-2008-4190
Malware in sbrugna...
attachmax dolphin <= 2.1.0 - Multiple Vulnerabilities
No description provided by source. \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV101$2008 ----------------------------------------------------------------------------------------- ECHOADV101$2008 Attachmax Dolphin = 2.1.0 Multiple Vulnerability...
Attachmax Dolphin 2.1.0 Remote File Inclusion / SQL Injection
Author : ph03nix Date : january 2011 Location : Indonesia Web : http://www.pho3nix.co.tv Critical Lvl : High Impact : System access Where : From Remote --------------------------------------------------------------------------- Affected software description: Application : Attachmax Dolphin versio...
CVE-2008-4205
SQL injection vulnerability in search.php Attachmax Dolphin 2.1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the category parameter in a Search action to index.php. NOTE: some of these details are obtained from third party information...
CVE-2008-4207
Attachmax Dolphin 2.1.0 and earlier does not properly protect info.php in the main folder, which allows remote attackers to obtain sensitive information via a direct request, which invokes the phpinfo function. NOTE: some of these details are obtained from third party information...
CVE-2008-4206
PHP remote file inclusion vulnerability in config.php in Attachmax Dolphin 2.1.0 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the relpath parameter...
Sql injection
SQL injection vulnerability in search.php Attachmax Dolphin 2.1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the category parameter in a Search action to index.php. NOTE: some of these details are obtained from third party information...
Remote file inclusion
PHP remote file inclusion vulnerability in config.php in Attachmax Dolphin 2.1.0 and earlier, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the relpath parameter...
Information disclosure
Attachmax Dolphin 2.1.0 and earlier does not properly protect info.php in the main folder, which allows remote attackers to obtain sensitive information via a direct request, which invokes the phpinfo function. NOTE: some of these details are obtained from third party information...
CVE-2008-4205
CVE-2008-4205 concerns SQL injection in Attachmax Dolphin
CVE-2008-4206
CVE-2008-4206 is a PHP remote file inclusion vulnerability affecting Attachmax Dolphin 2.1.0 and earlier. When register_globals is enabled, an attacker can cause arbitrary PHP code execution via a URL in the rel_path parameter to config.php. The public records confirm the vulnerability and its im...
CVE-2008-4205
SQL injection vulnerability in search.php Attachmax Dolphin 2.1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the category parameter in a Search action to index.php. NOTE: some of these details are obtained from third party information...
CVE-2008-4207
Attachmax Dolphin 2.1.0 and earlier does not properly protect info.php in the main folder, which allows remote attackers to obtain sensitive information via a direct request, which invokes the phpinfo function. NOTE: some of these details are obtained from third party information...
Attachmax多个输入验证漏洞
BUGTRAQ ID: 31207 Attachmax是用于在网站提供视频内容的脚本。 Attachmax脚本中存在多个输入验证错误,允许恶意用户泄露敏感信息或执行文件包含攻击。 1. 远程文件包含 config.php页面没有正确的验证对relpath参数的输入便用于包含文件,这可能导致包含本地或外部资源的任意文件。成功利用这个漏洞要求打开了registerglobals选项。 2. 文件信息泄露 主文件夹中的info.php文件没有受到保护,攻击者可以从浏览器中直接看到这个文件,窃取服务器的敏感信息。 3. SQL盲注...
[ECHO_ADV_101$2008] Attachmax Dolphin <= 2.1.0 Multiple Vulnerabilities
ECHOADV101$2008 ----------------------------------------------------------------------------------------- ECHOADV101$2008 Attachmax Dolphin = 2.1.0 Multiple Vulnerability ----------------------------------------------------------------------------------------- Author : K-159 Date : September, 16 ...
Attachmax Dolphin <= 2.1.0 Multiple Remote Vulnerabilities
No description provided by source. \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV101$2008 ----------------------------------------------------------------------------------------- ECHOADV101$2008 Attachmax Dolphin = 2.1.0 Multiple Vulnerability...
Unfixed XSS vulnerability at www.attachmax.com
Security researcher SaMTHG, has submitted on 17/09/2008 a cross-site-scripting XSS vulnerability affecting www.attachmax.com, which at the time of submission ranked 1695760 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 02/07/2009. It is...
Attachmax Dolphin 2.1.0 - Multiple Vulnerabilities
Attachmax Dolphin 2.1.0 - Multiple Vulnerabilities \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV101$2008 ----------------------------------------------------------------------------------------- ECHOADV101$2008 Attachmax Dolphin = 2.1.0 Multiple...