98 matches found
EUVD-2009-1773
Malware in sbrugna...
EUVD-2011-3670
Malware in sbrugna...
EUVD-2006-4411
Malware in sbrugna...
EUVD-2008-2515
Malware in sbrugna...
EUVD-2012-5096
Malware in sbrugna...
EUVD-2009-2375
Malware in sbrugna...
EUVD-2009-3103
Malware in sbrugna...
CVE-2011-3711
BIGACE 2.7.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by system/libs/javascript.inc.php and certain other files...
CVE-2009-3120
Cross-site scripting XSS vulnerability in public/index.php in BIGACE Web CMS 2.6 allows remote attackers to inject arbitrary web script or HTML via the id parameter. NOTE: some of these details are obtained from third party information...
BIGACE 2.7.8 Cross Site Scripting / File Upload
| Title : BIGACE 2.7.8 Multi Vulnerability | Author : indoushka | email : [email protected] | Dork : Powered by BIGACE 2.7.8. Login | Tested on: windows 8.1 Français V.Pro | Download : http://www.bigace.de/ ======================================= FCKeditor Upload :...
BigAce CMS 3.0 Cross Site Scripting
Affected software: bigace cmc Type of vulnerability:cross site scripting URL:http://demo.bigace.de/ Discovered by: provensec Website: provensec.com version: 3.0 Proof of concept http://site/xsspayload demo:http://demo.bigace.de/%22%3E%3Cimg%20src=d%20onclick=confirm%281%29;%3E...
BigACE 1.8.2 upload_form.php GLOBALS Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/19723/info Bigace is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote PHP code and execute i...
Bigace_2.7.3 CSRF Change Admin Password PoC
No description provided by source. !/usr/bin/python Exploit Title : Bigace2.7.3 CSRF Change admin password POC Software : Bigace 2.7.3 Software link : http://www.bigace.de/download.html Autor : Sweet Email : [email protected] Date : 26/10/2010 Software version : 2.7.3 Software detail: BIGACE -...
BigACE 1.8.2 item_main.php GLOBALS Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/19723/info Bigace is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote PHP code and execute i...
BigACE 1.8.2 download.cmd.php GLOBALS Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/19723/info Bigace is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote PHP code and execute i...
BigACE 1.8.2 admin.cmd.php GLOBALS Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/19723/info Bigace is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include arbitrary remote PHP code and execute i...
Bigace 2.7.5 - Remote File Upload Vulnerability
No description provided by source. ========================================== Bigace 2.7.5 Remote Upload file Vulnerability ========================================== InformatioN Title : Bigace 2.7.5 Remote Upload file Vulnerability Author : Net.Edit0r Vendor or Software Link :...
Bigace CMS 2.7.8 - Add Admin Account CSRF
No description provided by source. Exploit Title: Bigace CMS CSRF - Adding an admin account Date: 2013 29 July Exploit Author: Yashar shahinzadeh Credit goes for: ha.cker.ir Vendor Homepage: http://www.bigace.de/ Tested on: Linux & Windows, PHP 5.2.9 Affected Version : 2.7.8 Contacts:...
BIGACE Web CMS SQL注入和本地文件包含漏洞
Bugtraq ID:66350 BIGACE Web CMS是一款基于WEB的内容管理系统。 BIGACE Web CMS存在SQL注入和文件包含漏洞,允许攻击者利用漏洞获取或操作数据库数据或获取敏感文件内容信息。 0 BIGACE Web CMS 2.7.5 目前没有详细解决方案提供: http://sourceforge.net/projects/bigace/files/bigace2.7.5.zip http://www.example.com/bigace2.7.5/bigaceinstall2.7.5/public/index.php?menu=3LANGUAGE=LFI...
Bigace 2.7.5 LFI / XSS / SQL Injection
Exploit Title: Bigace 2.7.5 Blind Sql Injection Bigace 2.7.5 Cross site scripting Bigace 2.7.5 Local File Inclusion Date: 2014 18 March Author: Dr.3v1l Vendor Homepage: http://sourceforge.net/projects/bigace/files/bigace2.7.5.zip Version : 2.7.5 Tested on: Windows Category: webapps Google Dork:...