EUVD-2008-6007

Malware in sbrugna...

EUVD-2008-4353

Malware in sbrugna...

Unrestricted file upload

Unrestricted file upload vulnerability in "Add Pen/Author Name" feature in addpen.php in AvailScript Article Script allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in photos/...

CVE-2008-6900

Unrestricted file upload vulnerability in "Add Pen/Author Name" feature in addpen.php in AvailScript Article Script allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in photos/...

CVE-2008-6900

CVE-2008-6900 : Unrestricted file upload in AvailScript Article Script (Add Pen/Author Name via addpen.php) allows remote authenticated users to upload a file with an executable extension and access it under photos/, enabling arbitrary code execution. CVSSv2 vector: AV:N/AC:L/Au:S/C:P/I:P/A:P wit...

CVE-2008-6900

Unrestricted file upload vulnerability in "Add Pen/Author Name" feature in addpen.php in AvailScript Article Script allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in photos/...

Sql injection

SQL injection vulnerability in view.php in AvailScript Article Script allows remote attackers to execute arbitrary SQL commands via the v parameter...

CVE-2008-6037

CVE-2008-6037 describes an SQL injection in the AvailScript Article Script, specifically in the file/view component view.php, exploitable via the vulnerable parameter v. The root cause is insufficient input validation/sanitization allowing an attacker to inject SQL commands, enabling an attacker ...

AvailScript Article Script - Arbitrary File Upload

Availscript Article Script Remote File Upload Vulnerability ---------------------------------------------------------- Discovered By: S.W.A.T. [email protected] Home: www.batlagh.com Script Page: http://www.availscript.com/articlescript.php...

CVE-2008-4372

Cross-site scripting XSS vulnerability in articles.php in AvailScript Article Script allows remote attackers to inject arbitrary web script or HTML via the aIDS parameter...

CVE-2008-4371

SQL injection vulnerability in articles.php in AvailScript Article Script allows remote attackers to execute arbitrary SQL commands via the aIDS parameter...

Sql injection

SQL injection vulnerability in articles.php in AvailScript Article Script allows remote attackers to execute arbitrary SQL commands via the aIDS parameter...

CVE-2008-4371

SQL injection vulnerability in articles.php in AvailScript Article Script allows remote attackers to execute arbitrary SQL commands via the aIDS parameter...

CVE-2008-4372

Cross-site scripting XSS vulnerability in articles.php in AvailScript Article Script allows remote attackers to inject arbitrary web script or HTML via the aIDS parameter...

CVE-2008-4372

CVE-2008-4372 is an XSS vulnerability in the AvailScript Article Script, specifically in articles.php, exploitable via the aIDS parameter. This allows remote attackers to inject arbitrary web script or HTML. Public references (NVD, CVE lists) list a CVSS v2 base score of 4.3 (Medium) with user in...

CVE-2008-4371

CVE-2008-4371 describes a SQL injection in AvailScript Article Script : the vulnerability resides in articles.php and is exploitable via the aIDS parameter to execute arbitrary SQL commands remotely. The CVSS v2 base score is 7.5 (HIGH), with network access, low attack complexity, and no authenti...

AvailScript Article Script - view.php SQL Injection

AvailScript Article Script - view.php SQL Injection || | | Article Script view.php v Remote SQL Injection Vulnerability | | |---------------------Hussin X----------------------| | | Author: Hussin X | | Home : WwW.IQ-ty.CoM | WwW.TrYaG.CC | | email: darkangelg85atYahooDoTcom | | | | | | | | scrip...

Availscript Article Script (view.php v) SQL Injection Vulnerability

Exploit for unknown platform in category web applications =================================================================== Availscript Article Script view.php v SQL Injection Vulnerability =================================================================== || | | Article Script view.php v Remo...

Availscript Article Script (articles.php) Multiple Vulnerabilities

Exploit for unknown platform in category web applications ================================================================== Availscript Article Script articles.php Multiple Vulnerabilities ================================================================== Title: Availscript Article Script...

AvailScript Article Script - articles.php Multiple Vulnerabilities

AvailScript Article Script - articles.php Multiple Vulnerabilities /\ \ /\ \ \ /\ /\ \ //\ \ \ \ \ \ \ \ \ \ \ /',\ \ \ \ \ \ \ \ /\ /'\ /'\ \ \ \ /\ ,\ /, \ \ \ \ ,\ \ \ \ // / // /\//\///\/\ \ \/\ // // // //////// //// security breakd0wn! Title: Availscript...