19 matches found
EUVD-2007-2797
Malware in sbrugna...
EUVD-2004-1584
Malware in sbrugna...
EUVD-2005-4625
Malware in sbrugna...
ClientExec 3.0 Index.PHP Multiple Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/24061/info ClientExec is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the...
CVE-2007-2805
Multiple cross-site scripting XSS vulnerabilities in index.php in ClientExec CE 3.0 beta2, and possibly other versions, allow remote attackers to inject arbitrary web script or HTML via the 1 ticketID, 2 view, and 3 fuse parameters...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in index.php in ClientExec CE 3.0 beta2, and possibly other versions, allow remote attackers to inject arbitrary web script or HTML via the 1 ticketID, 2 view, and 3 fuse parameters...
CVE-2007-2805
Multiple cross-site scripting XSS vulnerabilities in index.php in ClientExec CE 3.0 beta2, and possibly other versions, allow remote attackers to inject arbitrary web script or HTML via the 1 ticketID, 2 view, and 3 fuse parameters...
CVE-2007-2805
CVE-2007-2805 is an XSS vulnerability in ClientExec (CE) 3.0 beta2 (and possibly other versions) affecting index.php. The issue allows remote attackers to inject arbitrary web script or HTML via the (1) ticketID, (2) view, and (3) fuse parameters. The connected records confirm the affected softwa...
ClientExec 3.0 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/24061/info ClientExec is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...
ClientExec XSS vuln.
Vuln. discovered by : r0t Date: 19 May 2007 vendor:http://clientexec.com/ affected versions: 3.0.0 beta2 other versions also can be affected. ClientExec contains a flaw that allows a remote Cross-Site Scripting attacks.Input passed to the "ticketID","view","fuse" parameter in "index.php" isn't...
ClientExec 3.0 - index.php Multiple Cross-Site Scripting Vulnerabilities
ClientExec 3.0 - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/24061/info ClientExec is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...
CVE-2005-4630
SQL injection vulnerability in index.php in ClientExec 2.3 allows remote attackers to execute arbitrary SQL commands via the 1 billshowid, 2 billdetailid, 3 fuse, and 4 frmClientID parameters...
CVE-2005-4630
CVE-2005-4630 affects ClientExec 2.3. It is a SQL injection vulnerability in index.php that allows remote attackers to execute arbitrary SQL commands via the parameters (billshowid, billdetailid, fuse, frmClientID). The issue enables manipulation of backend queries and can lead to data exposure o...
CVE-2005-4630
SQL injection vulnerability in index.php in ClientExec 2.3 allows remote attackers to execute arbitrary SQL commands via the 1 billshowid, 2 billdetailid, 3 fuse, and 4 frmClientID parameters...
Clientexec 2.x Multiple SQL inj.
Clientexec 2.x Multiple SQL inj. Vuln. dicovered by : r0t Date: 25 nov. 2005 Orginal advisory:http://pridels.blogspot.com/2005/11/clientexec-2x-multiple-sql-inj.html Vendor:http://www.clientexec.com/ affected version: Tested on 2.3 ,but also newest versions also can have this vuln. Product...
CVE-2004-1590
Technical details about CVE-2004-1590 are not publicly provided in the supplied documents; monitor for updates.
CVE-2004-1590
Clientexec allows remote attackers to gain sensitive information via an HTTP request to phpinfo.php, which calls the phpinfo function...
CVE-2004-1590
Clientexec allows remote attackers to gain sensitive information via an HTTP request to phpinfo.php, which calls the phpinfo function...
[SA12862] ClientExec Exposure of Sensitive Information
TITLE: ClientExec Exposure of Sensitive Information SECUNIA ADVISORY ID: SA12862 VERIFY ADVISORY: http://secunia.com/advisories/12862/ CRITICAL: Not critical IMPACT: Exposure of system information WHERE: From remote SOFTWARE: ClientExec 2.x http://secunia.com/product/4074/ DESCRIPTION: A security...