25 matches found
EUVD-2012-6489
Malware in sbrugna...
EUVD-2013-7258
Malware in sbrugna...
EUVD-2012-6488
Malware in sbrugna...
EUVD-2012-6490
Malware in sbrugna...
EUVD-2012-5727
Malware in sbrugna...
CVE-2012-5849
Multiple SQL injection vulnerabilities in ClipBucket 2.6 Revision 738 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 uid parameter in an addfriend action to ajax.php; id parameter in a 2 shareobject, 3 addtofav, 4 rating, or 5 flagobject action to ajax.php; cid...
CVE-2012-5849
Multiple SQL injection vulnerabilities in ClipBucket 2.6 Revision 738 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 uid parameter in an addfriend action to ajax.php; id parameter in a 2 shareobject, 3 addtofav, 4 rating, or 5 flagobject action to ajax.php; cid...
ClipBucket 2.6 Revision 738 Multiple SQL Injection Vulnerabilities
No description provided by source...
CVE-2012-6643
Multiple SQL injection vulnerabilities in the updatecounter function in includes/functions.php in ClipBucket 2.6 allow remote attackers to execute arbitrary SQL commands via the time parameter to 1 videos.php or 2 channels.php. NOTE: some of these details are obtained from third party information...
Cross site scripting
Cross-site scripting XSS vulnerability in ClipBucket 2.6 allows remote attackers to inject arbitrary web script or HTML via the type parameter to viewchannel.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
Sql injection
Multiple SQL injection vulnerabilities in the updatecounter function in includes/functions.php in ClipBucket 2.6 allow remote attackers to execute arbitrary SQL commands via the time parameter to 1 videos.php or 2 channels.php. NOTE: some of these details are obtained from third party information...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in ClipBucket 2.6 allow remote attackers to inject arbitrary web script or HTML via the 1 cat parameter to channels.php, 2 collections.php, 3 groups.php, or 4 videos.php; 5 query parameter to searchresult.php; or 6 type parameter to...
CVE-2012-6642
The CVE-2012-6642 entry concerns ClipBucket 2.6 with a Cross-site Scripting (XSS) flaw allowing remote attackers to inject arbitrary web script or HTML via the type parameter to view_channel.php. The vulnerability is supported by multiple feeds (NVD, Red Hat advisory, OpenVAS) and is described wi...
CVE-2012-6643
Multiple SQL injection vulnerabilities in the updatecounter function in includes/functions.php in ClipBucket 2.6 allow remote attackers to execute arbitrary SQL commands via the time parameter to 1 videos.php or 2 channels.php. NOTE: some of these details are obtained from third party information...
CVE-2012-6644
Multiple cross-site scripting XSS vulnerabilities in ClipBucket 2.6 allow remote attackers to inject arbitrary web script or HTML via the 1 cat parameter to channels.php, 2 collections.php, 3 groups.php, or 4 videos.php; 5 query parameter to searchresult.php; or 6 type parameter to...
CVE-2012-6644
ClipBucket 2.6 is reported to be affected by multiple cross-site scripting (XSS) vulnerabilities. The issue allows remote attackers to inject arbitrary web script or HTML via several parameters across different pages: (1) cat in channels.php, (2) collections.php, (3) groups.php, (4) videos.php, (...
CVE-2012-6643
CVE-2012-6643 affects ClipBucket 2.6, where the update_counter function in includes/functions.php is vulnerable to SQL injection. An attacker can pass a crafted time parameter via videos.php or channels.php to cause arbitrary SQL execution. The OpenVAS entry corroborates multiple vulnerabilities ...
ClipBucket 2.6 Cross Site Scripting
ClipBucket version 2.6 suffers from multiple cross site scripting vulnerabilities. Information -------------------- Name : XSS Vulnerabilities in ClipBucket Software : ClipBucket 2.6 and possibly below. Vendor Homepage : http://clip-bucket.com Vulnerability Type : Cross-Site Scripting Severity :...
Clipbucket 2.6 - videos.php?time SQL Injection
Clipbucket 2.6 - videos.php?time SQL Injection source: https://www.securityfocus.com/bid/51321/info ClipBucket is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these...
Clipbucket 2.6 - channels.php?time SQL Injection
Clipbucket 2.6 - channels.php?time SQL Injection source: https://www.securityfocus.com/bid/51321/info ClipBucket is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these...