25 matches found
EUVD-2007-3918
Malware in sbrugna...
BBS E-Market Professional bf_130 (1.3.0) - Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/11146/info BBS E-Market Professional is reported to be affected by a remote file include vulnerability that may allow an attacker to include malicious files containing arbitrary code to be executed on a vulnerable system...
BBS E-Market Professional bf_130 (1.3.0) - Multiple File Disclosure Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/11191/info BBS E-Market Professional is reported prone to multiple file disclosure vulnerabilities. These issues exist due to insufficient sanitization of user-supplied data. A remote attacker can disclose arbitrary...
NTSOFT BBS E-Market Professional = XSS / Remote Execution Code
+================================================================================================+ + NTSOFT BBS E-Market Professional & XSS and Remote Execution Evil code + +================================================================================================+ Authors: Ivan Sanchez...
NTSOFT BBS E-Market Professional - Multiple Cross-Site Scripting Vulnerabilities (2)
NTSOFT BBS E-Market Professional - Multiple Cross-Site Scripting Vulnerabilities 2 source: https://www.securityfocus.com/bid/41401/info NTSOFT BBS E-Market Professional is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An...
NTSOFT BBS E-Market Professional Cross Site Scripting
+================================================================================================+ + NTSOFT BBS E-Market Professional & XSS and Remote Execution Evil code + +================================================================================================+ Authors: Ivan Sanchez...
NTSOFT BBS E-Market Professional - Multiple Cross-Site Scripting Vulnerabilities (2)
source: https://www.securityfocus.com/bid/41401/info NTSOFT BBS E-Market Professional is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an...
NTSOFT BBS E-Market Professional XSS
+==========================================================================+ + NTSOFT BBS E-Market Professional & XSS - Remote Evil Java + +==========================================================================+ Authors: Ivan Sanchez Product: BBS E-Market Professional Vendor Overview: NTSOFT...
NTSOFT BBS E-Market Professional - Multiple Cross-Site Scripting Vulnerabilities (1)
NTSOFT BBS E-Market Professional - Multiple Cross-Site Scripting Vulnerabilities 1 source: https://www.securityfocus.com/bid/35893/info NTSOFT BBS E-Market Professional is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An...
CVE-2007-3934
PHP remote file inclusion vulnerability in postscript/postscript.php in BBS E-Market allows remote attackers to execute arbitrary PHP code via a URL in the pmode parameter...
Remote file inclusion
PHP remote file inclusion vulnerability in postscript/postscript.php in BBS E-Market allows remote attackers to execute arbitrary PHP code via a URL in the pmode parameter...
CVE-2007-3934
PHP remote file inclusion vulnerability in postscript/postscript.php in BBS E-Market allows remote attackers to execute arbitrary PHP code via a URL in the pmode parameter...
CVE-2007-3934
CVE-2007-3934 describes a PHP remote file inclusion in the BBS E-Market product, specifically the file w/postscript/postscript.php, exploitable via a URL parameter p_mode to execute arbitrary PHP code. The vulnerability is network-exploitable with low attack complexity and no authentication, yiel...
BBS E-Market (postscript.php p_mode) Remote File Inclusion Vulnerability
No description provided by source. dork:inurl:bemarket xpl:/bemarket/postscript/postscript.php?pmode= original post:http://darkcode.ath.cx/f0rum/ind3x.php?action=vthread&forum=12&topic=80 Greetz:d3hydr8,whoami [email protected] [email protected] sebug.net...
BBS E-Market - 'postscript.php?p_mode' Remote File Inclusion
dork:inurl:bemarket xpl:/bemarket/postscript/postscript.php?pmode= original post:http://darkcode.ath.cx/f0rum/ind3x.php?action=vthread&forum=12&topic=80 Greetz:d3hydr8,whoami [email protected] [email protected] milw0rm.com 2007-07-18...
BBS E-Market - postscript.php?p_mode Remote File Inclusion
BBS E-Market - postscript.php?pmode Remote File Inclusion dork:inurl:bemarket xpl:/bemarket/postscript/postscript.php?pmode= original post:http://darkcode.ath.cx/f0rum/ind3x.php?action=vthread&forum=12&topic=80 Greetz:d3hydr8,whoami [email protected] [email protected] milw0rm.com...
BBS E-Market (postscript.php p_mode) Remote File Inclusion Vulnerability
Exploit for unknown platform in category web applications ======================================================================== BBS E-Market postscript.php pmode Remote File Inclusion Vulnerability ======================================================================== dork:inurl:bemarket...
BBS E-Market Professional (Path Disclosure/Include) Multiple Vulns
No description provided by source. \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV06$2004 --------------------------------------------------------------------------- Multiple vulnerabilities 1n BBS E-Market Professional...
BBS E-Market Professional - Full Path Disclosure File Inclusion
BBS E-Market Professional - Full Path Disclosure File Inclusion \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV06$2004 --------------------------------------------------------------------------- Multiple vulnerabilities 1n BBS E-Market Professional...
BBS E-Market Professional index.php filename Parameter Traversal Arbitrary File Access
The remote host is running BBS E-Market Professional, a Korean e-commerce application written in PHP.\n There is a directory traversal vulnerability in the 'filename' parameter of '/bemarket/shop/index.php'. A remote attacker could exploit this to read sensitive information on the system...