37 matches found
EUVD-2008-2685
Malware in sbrugna...
EUVD-2011-5114
Malware in sbrugna...
EUVD-2006-0528
Malware in sbrugna...
EUVD-2011-5113
Malware in sbrugna...
BrowserCRM 0 Results.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/16435/info BrowserCRM is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary...
BrowserCRM Multiple SQLi and XSS Vulnerabilities
BrowserCRM is prone to multiple SQL injection SQLi and cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-onl...
CVE-2011-5214
Multiple cross-site scripting XSS vulnerabilities in BrowserCRM 5.100.01 and earlier allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 index.php, 2 modules/admin/adminmoduleindex.php, or 3 modules/calendar/customisecalendartimes.php; login parameter to 4 index.ph...
CVE-2011-5213
Multiple SQL injection vulnerabilities in BrowserCRM 5.100.01 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 loginusername parameter to index.php, 2 parentid parameter to modules/Documents/versionlist.php, or 3 contactid parameter to modules/Documents/index.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in BrowserCRM 5.100.01 and earlier allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 index.php, 2 modules/admin/adminmoduleindex.php, or 3 modules/calendar/customisecalendartimes.php; login parameter to 4 index.ph...
Sql injection
Multiple SQL injection vulnerabilities in BrowserCRM 5.100.01 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 loginusername parameter to index.php, 2 parentid parameter to modules/Documents/versionlist.php, or 3 contactid parameter to modules/Documents/index.php...
CVE-2011-5214
Multiple cross-site scripting XSS vulnerabilities in BrowserCRM 5.100.01 and earlier allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 index.php, 2 modules/admin/adminmoduleindex.php, or 3 modules/calendar/customisecalendartimes.php; login parameter to 4 index.ph...
CVE-2011-5214
CVE-2011-5214 concerns multiple cross-site scripting (XSS) vulnerabilities in BrowserCRM, affecting version 5.100.01 and earlier. The issue allows remote attackers to inject arbitrary script or HTML via: (1) PATH_INFO to index.php, (2) modules/admin/admin_module_index.php, (3) modules/calendar/cu...
CVE-2011-5213
Multiple SQL injection vulnerabilities in BrowserCRM 5.100.01 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 loginusername parameter to index.php, 2 parentid parameter to modules/Documents/versionlist.php, or 3 contactid parameter to modules/Documents/index.php...
CVE-2011-5213
CVE-2011-5213 affects BrowserCRM 5.100.01 and earlier and is tied to multiple SQL injection flaws. The OpenVAS entry confirms vulnerabilities in (1) index.php via login[username], (2) modules/Documents/version_list.php via parent_id, and (3) modules/Documents/index.php via contact_id, enabling re...
BrowserCRM 5.100.1 - parent_id SQL Injection
BrowserCRM 5.100.1 - parentid SQL Injection source: https://www.securityfocus.com/bid/51060/info Browser CRM is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these...
BrowserCRM 5.100.1 - 'login[]' Cross-Site Scripting
source: https://www.securityfocus.com/bid/51060/info Browser CRM is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these vulnerabilities could allow an attacker to steal...
BrowserCRM 5.100.1 - 'contact_id' SQL Injection
source: https://www.securityfocus.com/bid/51060/info Browser CRM is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these vulnerabilities could allow an attacker to steal...
BrowserCRM 5.100.1 - 'clients.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/51060/info Browser CRM is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these vulnerabilities could allow an attacker to steal...
BrowserCRM 5.100.1 - clients.php Cross-Site Scripting
BrowserCRM 5.100.1 - clients.php Cross-Site Scripting source: https://www.securityfocus.com/bid/51060/info Browser CRM is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting thes...
BrowserCRM 5.100.1 - framed Cross-Site Scripting
BrowserCRM 5.100.1 - framed Cross-Site Scripting source: https://www.securityfocus.com/bid/51060/info Browser CRM is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these...