25 matches found
EUVD-2008-2978
Malware in sbrugna...
EUVD-2008-2977
Malware in sbrugna...
EUVD-2008-2872
Malware in sbrugna...
Benja CMS 0.1 /admin/admin_new_submenu.php URL XSS
No description provided by source. source: http://www.securityfocus.com/bid/29884/info The 'benja CMS' program is prone to multiple vulnerabilities because it fails to adequately validate input and restrict access. These issues include three cross-site scripting issues, an arbitrary-file-upload...
Benja CMS 0.1 /admin/admin_edit_submenu.php URL XSS
No description provided by source. source: http://www.securityfocus.com/bid/29884/info The 'benja CMS' program is prone to multiple vulnerabilities because it fails to adequately validate input and restrict access. These issues include three cross-site scripting issues, an arbitrary-file-upload...
Benja CMS 0.1 /admin/admin_edit_topmenu.php URL XSS
No description provided by source. source: http://www.securityfocus.com/bid/29884/info The 'benja CMS' program is prone to multiple vulnerabilities because it fails to adequately validate input and restrict access. These issues include three cross-site scripting issues, an arbitrary-file-upload...
CVE-2008-2987
Multiple cross-site scripting XSS vulnerabilities in Benja CMS 0.1 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 admineditsubmenu.php, 2 adminnewsubmenu.php, and 3 adminedittopmenu.php in admin/...
Unrestricted file upload
Unrestricted file upload vulnerability in admin/upload.php in Benja CMS 0.1 allows remote attackers to upload and execute arbitrary PHP files via unspecified vectors, followed by a direct request to the file in billeder/...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Benja CMS 0.1 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 admineditsubmenu.php, 2 adminnewsubmenu.php, and 3 adminedittopmenu.php in admin/...
CVE-2008-2988
Unrestricted file upload vulnerability in admin/upload.php in Benja CMS 0.1 allows remote attackers to upload and execute arbitrary PHP files via unspecified vectors, followed by a direct request to the file in billeder/...
CVE-2008-2987
Multiple cross-site scripting XSS vulnerabilities in Benja CMS 0.1 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 admineditsubmenu.php, 2 adminnewsubmenu.php, and 3 adminedittopmenu.php in admin/...
CVE-2008-2988
Benja CMS 0.1 contains an unrestricted file upload vulnerability in admin/upload.php. The issue lets remote attackers upload and execute arbitrary PHP files by unspecified vectors, followed by directly requesting the uploaded file in billeder/. Root cause is an improper validation of uploaded con...
CVE-2008-2987
CVE-2008-2987 describes multiple cross-site scripting (XSS) vulnerabilities in Benja CMS 0.1. The issue is triggered by PATH_INFO input to the admin subsystem, specifically the files admin_edit_submenu.php, admin_new_submenu.php, and admin_edit_topmenu.php, allowing remote attackers to inject arb...
CVE-2008-2879
Benja CMS 0.1 does not require authentication for access to admin/, which allows remote attackers to add or delete a menu...
Authentication flaw
Benja CMS 0.1 does not require authentication for access to admin/, which allows remote attackers to add or delete a menu...
CVE-2008-2879
Benja CMS 0.1 does not require authentication for access to admin/, which allows remote attackers to add or delete a menu...
CVE-2008-2879
Benja CMS 0.1 is affected by an authentication bypass vulnerability: remote attackers can access the admin/ area without credentials and add or delete a menu. The issue is that admin access does not require authentication, enabling modification of menu items. Root cause is insufficient access con...
Benja CMS 0.1 - adminadmin_edit_topmenu.php Cross-Site Scripting
Benja CMS 0.1 - adminadminedittopmenu.php Cross-Site Scripting source: https://www.securityfocus.com/bid/29884/info The 'benja CMS' program is prone to multiple vulnerabilities because it fails to adequately validate input and restrict access. These issues include three cross-site scripting issue...
Benja CMS 0.1 (Upload/XSS) Multiple Remote Vulnerabilities
============================================================== Benja CMS 0.1 Upload/XSS Multiple Remote Vulnerabilities ============================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...
benjacms-uploadxss.txt
============================================================== Benja CMS 0.1 Upload/XSS Multiple Remote Vulnerabilities ============================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...