EUVD-2008-6257

Malware in sbrugna...

Broadcast Machine 0.1 - Multiple Remote File Inclusion Vulnerabilities

No description provided by source. ================================================================================================================= o Broadcast Machine 0.1 Multiple Remote File Inclusion Vulnerability Software : Broadcast Machine version 0.1 Vendor :...

CVE-2008-6287

Multiple PHP remote file inclusion vulnerabilities in Broadcast Machine 0.1 allow remote attackers to execute arbitrary PHP code via a URL in the baseDir parameter to 1 MySQLController.php, 2 SQLController.php, 3 SetupController.php, 4 VideoController.php, and 5 ViewController.php in controllers/...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in Broadcast Machine 0.1 allow remote attackers to execute arbitrary PHP code via a URL in the baseDir parameter to 1 MySQLController.php, 2 SQLController.php, 3 SetupController.php, 4 VideoController.php, and 5 ViewController.php in controllers/...

CVE-2008-6287

Multiple PHP remote file inclusion vulnerabilities in Broadcast Machine 0.1 allow remote attackers to execute arbitrary PHP code via a URL in the baseDir parameter to 1 MySQLController.php, 2 SQLController.php, 3 SetupController.php, 4 VideoController.php, and 5 ViewController.php in controllers/...

CVE-2008-6287

Broadcast Machine 0.1 is vulnerable to multiple PHP remote file inclusion (RFI) flaws in controllers/. The baseDir parameter in (1) MySQLController.php, (2) SQLController.php, (3) SetupController.php, (4) VideoController.php, and (5) ViewController.php can be abused to execute arbitrary PHP code ...

broadcast-rfi.txt

================================================================================================================= o Broadcast Machine 0.1 Multiple Remote File Inclusion Vulnerability Software : Broadcast Machine version 0.1 Vendor : http://code.google.com/p/broadcastmachine/ View Source :...

Broadcast Machine 0.1 Multiple Remote File Inclusion Vulnerabilities

Exploit for unknown platform in category web applications ==================================================================== Broadcast Machine 0.1 Multiple Remote File Inclusion Vulnerabilities ====================================================================...

Broadcast Machine 0.1 Multiple Remote File Inclusion Vulnerabilities

No description provided by source. ================================================================================================================= o Broadcast Machine 0.1 Multiple Remote File Inclusion Vulnerability Software : Broadcast Machine version 0.1 Vendor :...

Broadcast Machine 0.1 - Multiple Remote File Inclusions

================================================================================================================= o Broadcast Machine 0.1 Multiple Remote File Inclusion Vulnerability Software : Broadcast Machine version 0.1 Vendor : http://code.google.com/p/broadcastmachine/ View Source :...

Broadcast Machine 0.1 - Multiple Remote File Inclusions

Broadcast Machine 0.1 - Multiple Remote File Inclusions ================================================================================================================= o Broadcast Machine 0.1 Multiple Remote File Inclusion Vulnerability Software : Broadcast Machine version 0.1 Vendor :...

CVE-2007-3694

Cross-site scripting XSS vulnerability in login.php in Miro Project Broadcast Machine 0.9.9.9 allows remote attackers to inject arbitrary web script or HTML via the username parameter...

CVE-2007-3694

CVE-2007-3694 is an XSS vulnerability in Miro Project Broadcast Machine 0.9.9.9, exploitable via the login.php username parameter to inject arbitrary script/HTML. CVSS from NVD: 4.3 (Medium). Affected component: login form handling in login.php; root cause: reflected/XSS via username input. Impac...

CVE-2007-3694-bm.txt

Source: http://int21.de/cve/CVE-2007-3694-bm.html Cross site scripting XSS in broadcast machine References http://www.getmiro.com/create/broadcast/ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3694 Description Cross site scripting describes attacks that allow to insert malicious html or...

Miro Broadcast Machine 0.9.9 - login.php Cross-Site Scripting

Miro Broadcast Machine 0.9.9 - login.php Cross-Site Scripting source: https://www.securityfocus.com/bid/26407/info Miro Broadcast Machine is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue allows attackers to execut...

Miro Broadcast Machine 0.9.9 - 'login.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/26407/info Miro Broadcast Machine is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue allows attackers to execute arbitrary HTML or script code in a user's browser session in...

[Full-disclosure] CVE-2007-3694: Cross site scripting (XSS) in broadcast machine

Source: http://int21.de/cve/CVE-2007-3694-bm.html Cross site scripting XSS in broadcast machine References http://www.getmiro.com/create/broadcast/ https://vulners.com/cve/CVE-2007-3694 Description Cross site scripting describes attacks that allow to insert malicious html or javascript code via g...