3 matches found
EUVD-2007-5793
Malware in sbrugna...
CVE-2007-5823
Directory traversal vulnerability in forum.php in Ben Ng Scribe 0.2 and earlier allows remote attackers to create or overwrite arbitrary files via a .. dot dot in the username parameter in a Register action...
CVE-2007-5822
The CVE-2007-5822 entry affects Ben Ng Scribe 0.2 and earlier, where a flaw in forum.php allows direct static code injection. An attacker can leverage the username parameter in the Register action to cause remote PHP code to be written into a file under regged/. The root cause appears to be impro...