23 matches found
EUVD-2009-1743
Malware in sbrugna...
EUVD-2008-3119
Malware in sbrugna...
EUVD-2009-1744
Malware in sbrugna...
catviz 0.4.0b1 (lfi/xss) Multiple Vulnerabilities
No description provided by source. @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @===C4TEAM.ORG====ByALBAYX====C4TEAM.ORG====@ @=======================================@ @=Author : ByALBAYX @ @ @ @=Website : WWW.C4TEAM.ORG @ @ @ @@@@@@@@@@@@@@@@@@TURKISH@@@@@@@@@@@@@@@@@@@@ @ @ .----. @ .' '. @ / ...
CVE-2009-1748
Multiple directory traversal vulnerabilities in index.php in Catviz 0.4.0 Beta 1 allow remote attackers to read arbitrary files via a .. dot dot in the 1 webpagesform or 2 usermanform parameter...
Directory traversal
Multiple directory traversal vulnerabilities in index.php in Catviz 0.4.0 Beta 1 allow remote attackers to read arbitrary files via a .. dot dot in the 1 webpagesform or 2 usermanform parameter...
CVE-2009-1749
Multiple cross-site scripting XSS vulnerabilities in index.php in Catviz 0.4.0 beta 1 allow remote attackers to inject arbitrary web script or HTML via the 1 usermanform and 2 webpagesform parameters...
CVE-2009-1748
CVE-2009-1748 affects Catviz 0.4.0 Beta 1. It is a directory traversal vulnerability in index.php that allows remote attackers to read arbitrary files by supplying a .. sequence in the webpages_form or userman_form parameters. Impact is read access to arbitrary files via crafted input; no exploit...
CVE-2009-1749
Catviz 0.4.0 beta 1 contains multiple XSS in index.php, exploitable via the userman_form and webpages_form parameters. Root cause is improper handling of these inputs, allowing remote injection of arbitrary script/HTML. The vulnerability affects the ability to inject content into pages consumed b...
CVE-2009-1748
Multiple directory traversal vulnerabilities in index.php in Catviz 0.4.0 Beta 1 allow remote attackers to read arbitrary files via a .. dot dot in the 1 webpagesform or 2 usermanform parameter...
Catviz 0.4.0b1 XSS / Local File Inclusion
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @===C4TEAM.ORG====ByALBAYX====C4TEAM.ORG====@ @=======================================@ @=Author : ByALBAYX @ @ @ @=Website : WWW.C4TEAM.ORG @ @ @ @@@@@@@@@@@@@@@@@@TURKISH@@@@@@@@@@@@@@@@@@@@ @ @ .--"""""--. @ .' '. @ / \ @ ; C4TEAM ; @ | | @ | | @ ;...
Catviz 0.4.0b1 (LFI/XSS) Multiple Remote Vulnerabilities
No description provided by source. @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @===C4TEAM.ORG====ByALBAYX====C4TEAM.ORG====@ @=======================================@ @=Author : ByALBAYX @ @ @ @=Website : WWW.C4TEAM.ORG @ @ @ @@@@@@@@@@@@@@@@@@TURKISH@@@@@@@@@@@@@@@@@@@@ @ @ .--"""""--. @ .' '....
Catviz 0.4.0 beta1 - Local File Inclusion Cross-Site Scripting
Catviz 0.4.0 beta1 - Local File Inclusion Cross-Site Scripting @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @===C4TEAM.ORG====ByALBAYX====C4TEAM.ORG====@ @=======================================@ @=Author : ByALBAYX @ @ @ @=Website : WWW.C4TEAM.ORG @ @ @...
Catviz 0.4.0 beta1 - Local File Inclusion / Cross-Site Scripting
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @===C4TEAM.ORG====ByALBAYX====C4TEAM.ORG====@ @=======================================@ @=Author : ByALBAYX @ @ @ @=Website : WWW.C4TEAM.ORG @ @ @ @@@@@@@@@@@@@@@@@@TURKISH@@@@@@@@@@@@@@@@@@@@ @ @ .--"""""--. @ .' '. @ / \ @ ; C4TEAM ; @ | | @ | | @ ;...
Catviz 0.4.0b1 (LFI/XSS) Multiple Remote Vulnerabilities
Exploit for unknown platform in category web applications ======================================================== Catviz 0.4.0b1 LFI/XSS Multiple Remote Vulnerabilities ======================================================== @@@@@@@@@@@@@@@@@@email protected@@@@@@@@@@@@@@@@@@@ @ @ .--"""""--. @...
Sql injection
Multiple SQL injection vulnerabilities in index.php in Catviz 0.4 beta 1 allow remote attackers to execute arbitrary SQL commands via the 1 foreignkeyvalue parameter in the news page and 2 webpage parameter in the webpagemultiedit form...
CVE-2008-3129
Multiple SQL injection vulnerabilities in index.php in Catviz 0.4 beta 1 allow remote attackers to execute arbitrary SQL commands via the 1 foreignkeyvalue parameter in the news page and 2 webpage parameter in the webpagemultiedit form...
CVE-2008-3129
Multiple SQL injection vulnerabilities in index.php in Catviz 0.4 beta 1 allow remote attackers to execute arbitrary SQL commands via the 1 foreignkeyvalue parameter in the news page and 2 webpage parameter in the webpagemultiedit form...
CVE-2008-3129
The CVE-2008-3129 entry describes multiple SQL injection vulnerabilities in Catviz 0.4 beta 1, specifically in index.php. The flaws allow remote attackers to execute arbitrary SQL commands via the news page parameter (foreign_key_value) and the webpage_multi_edit form parameter (webpage). This in...
catviz-sql.txt
Catviz 0.4.0 beta1 SQL Injection Vulnerability Bug by: h0yt3r Dork: n/a Homepage: catviz.sourceforge.net This CMS suffers from some not correctly verified variables which are used in SQL Querys. An Attacker can easily get sensitive information from the database by injecting unexpected SQL Querys...