68 matches found
EUVD-2001-1026
Malware in sbrugna...
EUVD-2001-1025
Malware in sbrugna...
EUVD-2002-1690
Malware in sbrugna...
EUVD-2002-1688
Malware in sbrugna...
EUVD-2002-1689
Malware in sbrugna...
EUVD-2002-1687
Malware in sbrugna...
Basilix Webmail 0.9.7 Incorrect File Permissions Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2198/info A vulnerability has been reported in basilix webmail v. 0.9.7b. Basilix Webmail ships with several configuration files that have the file extensions '.class' and '.inc'. Among other things, these files contain t...
BasiliX Webmail 1.1 Email Header HTML Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10662/info BasiliX Webmail is reported to be prone to an email header HTML injection vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied email header strings. An attacker ca...
Basilix Webmail 1.0 File Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2995/info Basilix is a web-based mail application. It offers features such as mail attachments, address book, multiple language and theme support. During operation, Basilix opens a PHP include file using a variable as the...
BasiliX Webmail 1.1 Message Content Script Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5060/info BasiliX is a web-based mail application. It offers features such as mail attachments, address book, multiple language and theme support. A script injection issue has been reported in BasiliX Webmail. Script...
CVE-2006-5167
Multiple PHP remote file inclusion vulnerabilities in BasiliX 1.1.1 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the 1 BSXLIBDIR parameter in scripts in /files/ including a abook.php3, b compose-attach.php3, c compose-menu.php3, d compose-new.php3, e...
CVE-2006-5167
CVE-2006-5167 affects BasiliX 1.1.1 and earlier, where multiple PHP remote file inclusion flaws allow an attacker to execute arbitrary PHP code by supplying a URL via the BSX_LIBDIR parameter in /files/ scripts (abook.php3, compose-.php3, folder- .php3, mbox-.php3, message- .php3, settings.php3, ...
CVE-2006-5167
Multiple PHP remote file inclusion vulnerabilities in BasiliX 1.1.1 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the 1 BSXLIBDIR parameter in scripts in /files/ including a abook.php3, b compose-attach.php3, c compose-menu.php3, d compose-new.php3, e...
BasiliX 1.1.1 - 'BSX_LIBDIR' Remote File Inclusion
?php / ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+ +:+ +:+ +:+:+ +:+ ++ +++:++ +++:++++: ++ +:+ ++ ...
BasiliX 1.1.1 - BSX_LIBDIR Remote File Inclusion
BasiliX 1.1.1 - BSXLIBDIR Remote File Inclusion ?php / ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+...
BasiliX 1.1.1 (BSX_LIBDIR) Remote File Include Exploit
Exploit for unknown platform in category web applications ====================================================== BasiliX 1.1.1 BSXLIBDIR Remote File Include Exploit ====================================================== ?php / ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :...
BasiliX Content-Type XSS Vulnerability
The remote web server contains a PHP script which is vulnerable to a cross site scripting issue. Description : The remote host appears to be running BasiliX version 1.1.1 or lower. Such versions are vulnerable to a cross-scripting attack whereby an attacker may be able to cause a victim to...
BasiliX Message Content Script Injection Vulnerability
The remote web server contains PHP scripts that are prone to cross-site scripting attacks. Description : The remote host appears to be running a BasiliX version 1.1.0 or lower. Such versions are vulnerable to cross-scripting attacks since they do not filter HTML tags when showing a message. As a...
BasiliX SQL Injection Vulnerability
The remote web server contains PHP scripts that are prone to SQL injection attacks. Description : The remote host appears to be running a BasiliX version 1.1.0 or lower. Such versions are potentially vulnerable to SQL injection attacks depending on the version of PHP installed...
BasiliX Arbitrary File Disclosure Vulnerability
The remote web server contains a PHP script that is prone to information disclosure. Description : The remote host appears to be running a BasiliX version 1.1.0 or lower. Such versions allow retrieval of arbitrary files that are accessible to the web server user when sending a message since they...