82 matches found
EUVD-2006-2499
Malware in sbrugna...
EUVD-2006-2500
Malware in sbrugna...
EUVD-2006-2924
Malware in sbrugna...
EUVD-2006-2819
Malware in sbrugna...
EUVD-2007-1018
Malware in sbrugna...
EUVD-2008-5902
Malware in sbrugna...
CodeAvalanche News 1.2 Default.ASP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/18031/info CodeAvalanche News is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit...
Improper access control
CodeAvalanche FreeForum stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing the password via a direct request for private/CAForum.mdb. NOTE: some of these details are obtained from third party...
CVE-2008-5932
CodeAvalanche FreeForum stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing the password via a direct request for private/CAForum.mdb. NOTE: some of these details are obtained from third party...
CVE-2008-5932
CodeAvalanche FreeForum stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing the password via a direct request for private/CAForum.mdb. NOTE: some of these details are obtained from third party...
CVE-2008-5932
The CVE refers to CodeAvalanche FreeForum with an improper access control flaw that exposes the web root _private/CAForum.mdb, allowing remote attackers to download the database file containing passwords. The affected component is the forum software; the underlying cause is insufficient access co...
CVE-2008-5896
CodeAvalanche RateMySite stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing the administrator password via a direct request for private/CARateMySite.mdb. NOTE: some of these details are obtained...
CVE-2008-5898
CodeAvalanche Directory stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing the administrator password via a direct request for private/CADirectory.mdb. NOTE: some of these details are obtained fr...
CVE-2008-5897
CodeAvalanche FreeWallpaper stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing the administrator password via a direct request for private/CAFreeWallpaper.mdb. NOTE: some of these details are...
CVE-2008-5900
CodeAvalanche Articles stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing the administrator password via a direct request for private/CAArticles.mdb. NOTE: some of these details are obtained from...
CVE-2008-5899
CodeAvalanche FreeForAll stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing the administrator password via a direct request for private/CAFFAPage.mdb. NOTE: some of these details are obtained fro...
Improper access control
CodeAvalanche Articles stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing the administrator password via a direct request for private/CAArticles.mdb. NOTE: some of these details are obtained from...
Improper access control
CodeAvalanche RateMySite stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing the administrator password via a direct request for private/CARateMySite.mdb. NOTE: some of these details are obtained...
Improper access control
CodeAvalanche FreeForAll stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing the administrator password via a direct request for private/CAFFAPage.mdb. NOTE: some of these details are obtained fro...
CVE-2008-5897
CodeAvalanche FreeWallpaper stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing the administrator password via a direct request for private/CAFreeWallpaper.mdb. NOTE: some of these details are...