25 matches found
EUVD-2008-2902
Malware in sbrugna...
Clever Copy 3.0 Connect.INC Information Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/17461/info Clever Copy is prone to an information-disclosure vulnerability. A remote attacker could leverage this issue to gain access to sensitive configuration information. The attacker could then use this information t...
Clever Copy 3.0 Multiple SQL Injection and Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/27335/info Clever Copy is prone to multiple input-validation vulnerabilities, including two SQL-injection issues and a cross-site scripting issue, because it fails to sufficiently sanitize user-supplied data. Exploiting...
CVE-2008-2909
SQL injection vulnerability in results.php in Clever Copy 3.0 allows remote attackers to execute arbitrary SQL commands via the searchtype parameter...
Sql injection
SQL injection vulnerability in results.php in Clever Copy 3.0 allows remote attackers to execute arbitrary SQL commands via the searchtype parameter...
CVE-2008-2909
CVE-2008-2909: SQL injection in Clever Copy 3.0’s results.php. The vulnerability allows remote attackers to execute arbitrary SQL commands through the searchtype parameter. Affected component is the results.php handling in Clever Copy 3.0; root cause is improper sanitization/validation of the sea...
CVE-2008-2909
SQL injection vulnerability in results.php in Clever Copy 3.0 allows remote attackers to execute arbitrary SQL commands via the searchtype parameter...
Clever Copy 3.0 (postview.php) Remote SQL Injection Exploit
No description provided by source. !/usr/bin/perl Clever Copy 'postview.php' SQL Injection Vulnerable Exploit Coded By U238 | Web - Designer Solutions Developer Thank you joss My Friends : ka0x - Marco Almeida - TheBekiR - fahn - Teyfik Cevik - Nettoxic - Caborz http://noexec.blogspot.com print...
Clever Copy 3.0 - postview.php SQL Injection
Clever Copy 3.0 - postview.php SQL Injection !/usr/bin/perl Clever Copy 'postview.php' SQL Injection Vulnerable Exploit Coded By U238 | Web - Designer Solutions Developer Thank you joss My Friends : ka0x - Marco Almeida - TheBekiR - fahn - Teyfik Cevik - Nettoxic - Caborz http://noexec.blogspot.c...
CVE-2008-1608
CVE-2008-1608 documents a SQL injection in Clever Copy 3.0 via postview.php, where an attacker can manipulate the ID parameter to execute arbitrary SQL commands. The entry notes this is a different vector from CVE-2008-0363 and CVE-2006-0583. The connected sources confirm the affected software (C...
Clever Copy 3.0 - 'postview.php' SQL Injection Vulnerability
Clever Copy 3.0 'postview.php' SQL Injection Vulnerability. CVE-2008-1608. Webapps exploit for php platform source: http://www.securityfocus.com/bid/28437/info Clever Copy is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an...
CVE-2008-0363
Multiple SQL injection vulnerabilities in Clever Copy 3.0 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 ID parameter to postcomment.php and the 2 album parameter to gallery.php...
CVE-2008-0362
Cross-site scripting XSS vulnerability in gallery.php in Clever Copy 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the album parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in gallery.php in Clever Copy 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the album parameter...
CVE-2008-0362
The CVE-2008-0362 entry describes a Cross-Site Scripting (XSS) vulnerability in Clever Copy versions up to 3.0, specifically in gallery.php. The flaw allows remote attackers to inject arbitrary web script or HTML through the album parameter. Affected software is the Clever Copy gallery implementa...
CVE-2008-0362
Cross-site scripting XSS vulnerability in gallery.php in Clever Copy 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the album parameter...
Clever Copy 3.0 - Multiple SQL Injections / Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/27335/info Clever Copy is prone to multiple input-validation vulnerabilities, including two SQL-injection issues and a cross-site scripting issue, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacke...
Clever Copy 3.0 - 'Connect.INC' Information Disclosure
source: https://www.securityfocus.com/bid/17461/info Clever Copy is prone to an information-disclosure vulnerability. A remote attacker could leverage this issue to gain access to sensitive configuration information. The attacker could then use this information to launch further attacks against t...
[ECHO_ADV_28$2006] Clever Copy <= 3.0 Connect.inc Critical Information Disclosure
/ / | | / // / | | Y / | / / /| / / / / / / .OR.ID ECHOADV28$2006 --------------------------------------------------------------------------- ECHOADV28$2006 Clever Copy = 3.0 Connect.inc Critical Information Disclosure ---------------------------------------------------------------------------...
Cross site scripting
Cross-site scripting XSS vulnerability in default.php in Clever Copy 3.0 allows remote attackers to inject arbitrary web script or HTML via the Subject field when sending private messages privatemessages.php. NOTE: the provenance of this information is unknown; the details are obtained solely fro...