EUVD-2018-13116

Malware in sbrugna...

CuteNews <= 1.4.1 (categories.mdu) Remote Command Execution Exploit

No description provided by source. !/usr/bin/perl cijfer-cnxpl - CuteNews =1.4.1 Remote Command Execution Copyright c 2005 cijfer [email protected] All rights reserved. 1. example cijfer@kalma:/research$ ./cijfer-cnxpl.pl -h www.xxxx.org -d /news [email protected] /$ id;uname -a uid=48apache...

CVE-2007-6633

Multiple cross-site scripting XSS vulnerabilities in FAQMasterFlexPlus, possibly 1.5 or 1.52, allow remote attackers to inject arbitrary web script or HTML via 1 the catname parameter to faq.php; and unspecified parameters to the 2 add categories, 3 edit categories, 4 delete categories, 5 add faq...

[SA21611] PHP iAddressBook &quot;cat_name&quot; Script Insertion Vulnerability

TITLE: PHP iAddressBook "catname" Script Insertion Vulnerability SECUNIA ADVISORY ID: SA21611 VERIFY ADVISORY: http://secunia.com/advisories/21611/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: PHP iAddressbook 0.x http://secunia.com/product/11678/ DESCRIPTION:...