68 matches found
EUVD-2001-1026
Malware in sbrugna...
EUVD-2002-1687
Malware in sbrugna...
EUVD-2002-1690
Malware in sbrugna...
EUVD-2002-1689
Malware in sbrugna...
EUVD-2001-1025
Malware in sbrugna...
EUVD-2002-1688
Malware in sbrugna...
BasiliX Webmail 1.1 Email Header HTML Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10662/info BasiliX Webmail is reported to be prone to an email header HTML injection vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied email header strings. An attacker ca...
BasiliX Webmail 1.1 Message Content Script Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5060/info BasiliX is a web-based mail application. It offers features such as mail attachments, address book, multiple language and theme support. A script injection issue has been reported in BasiliX Webmail. Script...
Basilix Webmail 1.0 File Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2995/info Basilix is a web-based mail application. It offers features such as mail attachments, address book, multiple language and theme support. During operation, Basilix opens a PHP include file using a variable as the...
Basilix Webmail 0.9.7 Incorrect File Permissions Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2198/info A vulnerability has been reported in basilix webmail v. 0.9.7b. Basilix Webmail ships with several configuration files that have the file extensions '.class' and '.inc'. Among other things, these files contain t...
CVE-2006-5167
Multiple PHP remote file inclusion vulnerabilities in BasiliX 1.1.1 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the 1 BSXLIBDIR parameter in scripts in /files/ including a abook.php3, b compose-attach.php3, c compose-menu.php3, d compose-new.php3, e...
CVE-2006-5167
Multiple PHP remote file inclusion vulnerabilities in BasiliX 1.1.1 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the 1 BSXLIBDIR parameter in scripts in /files/ including a abook.php3, b compose-attach.php3, c compose-menu.php3, d compose-new.php3, e...
CVE-2006-5167
CVE-2006-5167 affects BasiliX 1.1.1 and earlier, where multiple PHP remote file inclusion flaws allow an attacker to execute arbitrary PHP code by supplying a URL via the BSX_LIBDIR parameter in /files/ scripts (abook.php3, compose-.php3, folder- .php3, mbox-.php3, message- .php3, settings.php3, ...
BasiliX 1.1.1 (BSX_LIBDIR) Remote File Include Exploit
Exploit for unknown platform in category web applications ====================================================== BasiliX 1.1.1 BSXLIBDIR Remote File Include Exploit ====================================================== ?php / ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :...
BasiliX 1.1.1 - BSX_LIBDIR Remote File Inclusion
BasiliX 1.1.1 - BSXLIBDIR Remote File Inclusion ?php / ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+...
BasiliX 1.1.1 - 'BSX_LIBDIR' Remote File Inclusion
?php / ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+ +:+ +:+ +:+:+ +:+ ++ +++:++ +++:++++: ++ +:+ ++ ...
BasiliX Message Content Script Injection Vulnerability
The remote web server contains PHP scripts that are prone to cross-site scripting attacks. Description : The remote host appears to be running a BasiliX version 1.1.0 or lower. Such versions are vulnerable to cross-scripting attacks since they do not filter HTML tags when showing a message. As a...
BasiliX Arbitrary Command Execution Vulnerability
The remote web server contains a PHP script that is prone to arbitrary command execution. Description : The remote host appears to be running a version of BasiliX between 1.0.2beta or 1.0.3beta. In such versions, the script 'login.php3' fails to sanitize user input, which enables a remote attacke...
BasiliX Detection
The remote web server contains a webmail application written in PHP. Description : This script detects whether the remote host is running BasiliX and extracts version numbers and locations of any instances found. BasiliX is a webmail application based on PHP and IMAP and powered by MySQL. OpenVAS...
BasiliX Content-Type XSS Vulnerability
The remote web server contains a PHP script which is vulnerable to a cross site scripting issue. Description : The remote host appears to be running BasiliX version 1.1.1 or lower. Such versions are vulnerable to a cross-scripting attack whereby an attacker may be able to cause a victim to...