30 matches found
EUVD-2003-1489
Malware in sbrugna...
EUVD-2003-1143
Malware in sbrugna...
EUVD-2006-2632
Malware in sbrugna...
EUVD-2006-2631
Malware in sbrugna...
Bytehoard 0.7 File Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8850/info Bytehoard is prone to directory traversal attacks. This could potentially permit remote attackers to gain unauthorized access to sensitive files hosted on the system running the software...
[Full-disclosure] two bytehoard bugs
Application: Bytehoard Versions: 2.1 alpha to epsilon Release Date: 2007-11-26 Author: Ernesto Alvarez / Activesec SA Kudos to: Rodrigo Seguel / Activesec SA for suggesting the session destruction approach Contact info: ealvarez at activesec biz Developer response: None. No response to mail, foru...
bytehoard-multi.txt
Application: Bytehoard Versions: 2.1 alpha to epsilon Release Date: 2007-11-26 Author: Ernesto Alvarez / Activesec SA Kudos to: Rodrigo Seguel / Activesec SA for suggesting the session destruction approach Contact info: ealvarez at activesec biz Developer response: None. No response to mail, foru...
two bytehoard 2.1 bugs
Application: Bytehoard Versions: 2.1 alpha to epsilon Release Date: 2007-11-26 Author: Ernesto Alvarez / Activesec SA Kudos to: Rodrigo Seguel / Activesec SA for suggesting the session destruction approach Contact info: ealvarez at activesec biz Developer response: None. No response to mail, foru...
CVE-2003-1499
CVE-2003-1499 : A directory traversal flaw in Bytehoard 0.7’s index.php allows remote attackers to read arbitrary files by supplying a .. in the infolder parameter. The NVD entry lists CVSS v2 base metrics: AV:N/AC:L/Au:N/C:N/I:N/A:P with a base score of 5.0 (Medium) and network attack vector; ex...
CVE-2003-1499
Directory traversal vulnerability in index.php in Bytehoard 0.7 allows remote attackers to read arbitrary files via a .. dot dot in the infolder parameter...
CVE-2006-2849
PHP remote file inclusion vulnerability in includes/webdav/server.php in Bytehoard 2.1 Epsilon/Delta allows remote attackers to execute arbitrary PHP code via a URL in the bhconfigbhfilepath parameter...
CVE-2006-2849
PHP remote file inclusion vulnerability in includes/webdav/server.php in Bytehoard 2.1 Epsilon/Delta allows remote attackers to execute arbitrary PHP code via a URL in the bhconfigbhfilepath parameter...
CVE-2006-2849
Summary: CVE-2006-2849 is a PHP remote file inclusion vulnerability affecting Bytehoard 2.1 Epsilon/Delta. The flaw resides in includes/webdav/server.php and is triggered by a crafted value in the bhconfig[bhfilepath] parameter, allowing an attacker to execute arbitrary PHP code remotely. The pro...
Bytehoard 2.1 Remote File Include
Script: Bytehoard 2.1 Epsilon/Delta www.bytehoard.org Discovered: beford xbefordx gmail com File: ./bytehoard/includes/webdav/server.php Vuln: Remote File Include code requireonce $bhconfig'bhfilepath'."/includes/webdav/parsepropfind.php"; /code...
Bytehoard 2.1 (server.php) Remote File Include Vulnerability
No description provided by source. Script: Bytehoard 2.1 Epsilon/Delta www.bytehoard.org Discovered: beford xbefordx gmail com File: ./bytehoard/includes/webdav/server.php Vuln: Remote File Include code requireonce $bhconfig'bhfilepath'."/includes/webdav/parsepropfind.php"; /code...
Bytehoard 2.1 - server.php Remote File Inclusion
Bytehoard 2.1 - server.php Remote File Inclusion Script: Bytehoard 2.1 Epsilon/Delta www.bytehoard.org Discovered: beford File: ./bytehoard/includes/webdav/server.php Vuln: Remote File Include code requireonce $bhconfig'bhfilepath'."/includes/webdav/parsepropfind.php"; /code...
Bytehoard 2.1 (server.php) Remote File Include Vulnerability
Exploit for unknown platform in category web applications ============================================================ Bytehoard 2.1 server.php Remote File Include Vulnerability ============================================================ Script: Bytehoard 2.1 Epsilon/Delta www.bytehoard.org...
Bytehoard 2.1 - 'server.php' Remote File Inclusion
Script: Bytehoard 2.1 Epsilon/Delta www.bytehoard.org Discovered: beford File: ./bytehoard/includes/webdav/server.php Vuln: Remote File Include code requireonce $bhconfig'bhfilepath'."/includes/webdav/parsepropfind.php"; /code...
CVE-2006-2632
Cross-site scripting XSS vulnerability in Andrew Godwin ByteHoard 2.1 and earlier allows remote authenticated users to inject arbitrary web script or HTML via file descriptions...
Cross site scripting
Cross-site scripting XSS vulnerability in Andrew Godwin ByteHoard 2.1 and earlier allows remote authenticated users to inject arbitrary web script or HTML via file descriptions...