4 matches found
CVE-2011-3715
ClanTiger 1.1.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by widgets/statistics/statistics.php and certain other files...
Information disclosure
ClanTiger 1.1.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by widgets/statistics/statistics.php and certain other files...
Clantiger 1.1.3 Cross Site Scripting
Clantiger Clan Cms 1.1.3 Bug Xss Title: Clantiger 1.1.3 Can Use Function Java Script Vendor: www.clantiger.com/ AUTHOR: ITSecTeam Email: [email protected] Website:http://www.itsecteam.com Forum : http://forum.ITSecTeam.com Advisory:www.ITSecTeam.com/en/vulnerabilities/vulnerability59.htm Thanks:...
Sql injection
SQL injection vulnerability in the shoutbox module modules/shoutbox.php in ClanTiger 1.1.3 and earlier allows remote attackers to execute arbitrary SQL commands via the semail parameter...