8 matches found
EUVD-2006-3128
Malware in sbrugna...
EUVD-2006-3127
Malware in sbrugna...
Clubpage (clubpage.php) SQL Injection Vulnerability
Exploit for php platform in category web applications ==================================================== Clubpage clubpage.php SQL Injection Vulnerability ==================================================== Title: Clubpage clubpage.php SQL Injection Vulnerability Version: All versions Author:...
CVE-2006-3131
Multiple cross-site scripting XSS vulnerabilities in Clubpage allow remote attackers to inject arbitrary web script or HTML via the 1 newsarchive, 2 language, and 3 intranetLogin parameters in a index.php; the 4 sitesid parameter in b sites.php; and the 5 newsid parameter in c newsmore.php...
CVE-2006-3130
SQL injection vulnerability in index.php in Clubpage allows remote attackers to execute arbitrary SQL commands via the category parameter...
CVE-2006-3131
Multiple cross-site scripting XSS vulnerabilities in Clubpage allow remote attackers to inject arbitrary web script or HTML via the 1 newsarchive, 2 language, and 3 intranetLogin parameters in a index.php; the 4 sitesid parameter in b sites.php; and the 5 newsid parameter in c newsmore.php...
CVE-2006-3130
CVE-2006-3130 describes an SQL injection in Clubpage’s index.php via the category parameter. Affected: Clubpage, component: index.php. Root cause: insufficient input validation on the category parameter leading to arbitrary SQL execution. Impact per linked records: data confidentiality, integrity...
CVE-2006-3131
Clubpage is affected by multiple cross-site scripting (XSS) vulnerabilities. The issue arises in the web application’s PHP files where user-supplied parameters can be injected: (1) news_archive, (2) language, and (3) intranetLogin in index.php; (4) sites_id in sites.php; and (5) news_id in news_m...