EUVD-2006-2808

Malware in sbrugna...

Ovidentia 7.9.4 Cross Site Scripting / SQL Injection

Ovidentia 7.9.4 Multiple Remote Vulnerabilities Vendor: Cantico Product web page: http://www.ovidentia.org Affected version: 7.9.4 Summary: Ovidentia is both a content management system CMS and a collaborative environment Groupware. Desc: Input passed via several parameters is not properly...

Ovidentia 7.9.4 - Multiple Vulnerabilities

Ovidentia 7.9.4 - Multiple Vulnerabilities Ovidentia 7.9.4 Multiple Remote Vulnerabilities Vendor: Cantico Product web page: http://www.ovidentia.org Affected version: 7.9.4 Summary: Ovidentia is both a content management system CMS and a collaborative environment Groupware. Desc: Input passed...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in Cantico Ovidentia 5.8.0 allow remote attackers to execute arbitrary PHP code via a URL in the babInstallPath parameter in 1 index.php, 2 topman.php, 3 approb.php, 4 vacadmb.php, 5 vacadma.php, 6 vacadm.php, 7 statart.php, 8 search.php, 9...

CVE-2006-2811

Multiple PHP remote file inclusion vulnerabilities in Cantico Ovidentia 5.8.0 allow remote attackers to execute arbitrary PHP code via a URL in the babInstallPath parameter in 1 index.php, 2 topman.php, 3 approb.php, 4 vacadmb.php, 5 vacadma.php, 6 vacadm.php, 7 statart.php, 8 search.php, 9...

CVE-2006-2811

Multiple PHP remote file inclusion vulnerabilities in Cantico Ovidentia 5.8.0 allow remote attackers to execute arbitrary PHP code via a URL in the babInstallPath parameter in 1 index.php, 2 topman.php, 3 approb.php, 4 vacadmb.php, 5 vacadma.php, 6 vacadm.php, 7 statart.php, 8 search.php, 9...

CVE-2006-2811

CVE-2006-2811 describes multiple PHP remote file inclusion flaws in Ovidentia Portal (Cantico Ovidentia 5.8.0) where the babInstallPath parameter is used by various scripts (e.g., index.php, topman.php, approb.php, etc.). The underlying issue allows a remote attacker to include arbitrary files an...