5 matches found
EUVD-2006-3254
Malware in sbrugna...
EUVD-2006-4831
Malware in sbrugna...
CVE-2006-4844
PHP remote file inclusion vulnerability in inc/claroinitlocal.inc.php in Claroline 1.7.7 and earlier, as used in Dokeos and possibly other products, allows remote attackers to execute arbitrary PHP code via a URL in the extAuthSourcenewUser parameter...
CVE-2006-3257
Multiple cross-site scripting XSS vulnerabilities in Claroline 1.7.7 allow remote attackers to inject arbitrary HTML or web script via unspecified attack vectors, possibly including 1 calendar/myagenda.php, 2 document/document.php, 3 phpbb/newtopic.php, 4 tracking/userLog.php, and 5 wiki/page.php...
CVE-2006-3257
CVE-2006-3257 affects Claroline 1.7.7 with multiple XSS vulnerabilities enabling an attacker to inject arbitrary HTML/Script via several vectors (calendar/myagenda.php, document/document.php, phpbb/newtopic.php, tracking/userLog.php, wiki/page.php). Public data lists these vectors and notes poten...