27 matches found
EUVD-2005-3331
Malware in sbrugna...
EUVD-2006-3469
Malware in sbrugna...
EUVD-2007-0058
Malware in sbrugna...
EUVD-2005-4762
Malware in sbrugna...
EUVD-2006-2807
Malware in sbrugna...
CVE-2005-4769
SQL injection vulnerability in addrbook.php in Belchior Foundry vCard PRO 3.1 allows remote attackers to execute arbitrary SQL commands via the addrid parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
SUSE CVE-2006-3474
Multiple SQL injection vulnerabilities in Belchior Foundry vCard PRO allow remote attackers to execute arbitrary SQL commands via the 1 catid parameter to a gbrowse.php, 2 cardid parameter to b rating.php and c create.php, and the 3 eventid parameter to d search.php...
Belchior Foundry VCard 2.9 - Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15207/info vCard is prone to a remote file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary remote...
Belchior Foundry vCard Pro 3.1 Addrbook.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15254/info vCard PRO is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could...
Belchior Foundry VCard 2.8 Authentication Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9910/info It has been reported that vCard is prone to a remote authentication bypass vulnerability. This issue is due to a design error that would allow a malicious user access to certain admin functionality without havin...
CVE-2007-0054
Cross-site scripting XSS vulnerability in gbrowse.php in Belchior Foundry vCard PRO allows remote attackers to inject arbitrary web script or HTML via the sortby parameter...
CVE-2007-0054
Cross-site scripting XSS vulnerability in gbrowse.php in Belchior Foundry vCard PRO allows remote attackers to inject arbitrary web script or HTML via the sortby parameter...
CVE-2007-0054
The CVE-2007-0054 entry describes a Cross-site Scripting (XSS) vulnerability in Belchior Foundry vCard PRO, specifically in gbrowse.php where an attacker can inject arbitrary web script or HTML via the sortby parameter. Affected component: gbrowse.php in Belchior Foundry vCard PRO. Root cause is ...
CVE-2006-3474
Multiple SQL injection vulnerabilities in Belchior Foundry vCard PRO allow remote attackers to execute arbitrary SQL commands via the 1 catid parameter to a gbrowse.php, 2 cardid parameter to b rating.php and c create.php, and the 3 eventid parameter to d search.php...
CVE-2006-3474
Multiple SQL injection vulnerabilities in Belchior Foundry vCard PRO allow remote attackers to execute arbitrary SQL commands via the 1 catid parameter to a gbrowse.php, 2 cardid parameter to b rating.php and c create.php, and the 3 eventid parameter to d search.php...
CVE-2006-3474
CVE-2006-3474 describes multiple SQL injection vulnerabilities in Belchior Foundry vCard PRO that allow remote attackers to execute arbitrary SQL commands via the following parameters: (1) cat_id to gbrowse.php, (2) card_id to rating.php and create.php, and (3) event_id to search.php. The NVD met...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Belchior Foundry vCard 2.9 allow remote attackers to inject arbitrary web script or HTML via the page parameter in 1 toprated.php and 2 newcards.php. NOTE: the cardid vector is already covered by CVE-2006-1230...
CVE-2006-2810
CVE-2006-2810 describes multiple cross-site scripting (XSS) vulnerabilities in Belchior Foundry vCard 2.9. The issue allows remote attackers to inject arbitrary web script or HTML via the page parameter in (1) toprated.php and (2) newcards.php. The card_id vector is noted as being covered by CVE-...
CVE-2006-2810
Multiple cross-site scripting XSS vulnerabilities in Belchior Foundry vCard 2.9 allow remote attackers to inject arbitrary web script or HTML via the page parameter in 1 toprated.php and 2 newcards.php. NOTE: the cardid vector is already covered by CVE-2006-1230...
CVE-2005-4769
CVE-2005-4769: Affected software is Belchior Foundry vCard PRO 3.1; vulnerability resides in addrbook.php where SQL injection via the addr_id parameter allows remote execution of arbitrary SQL commands. The core issue is improper input handling leading to database query manipulation. No explicit ...