120 matches found
Comdev Web Blogger 4.1.3 - 'arcmonth' SQL Injection
\ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV100$2008 ----------------------------------------------------------------------------------------- ECHOADV100$2008 Comdev Web Blogger = 4.1.3 arcmonth Sql Injection Vulnerability...
CVE-2008-1872
SQL injection vulnerability in home.news.php in Comdev News Publisher 4.1.2 allows remote attackers to execute arbitrary SQL commands via the arcmonth parameter. NOTE: some of these details are obtained from third party information...
CVE-2008-1872
The CVE covers a SQL injection vulnerability in Comdev News Publisher 4.1.2, specifically in the home.news.php script where the arcmonth parameter can be exploited to execute arbitrary SQL commands remotely. This is documented with a CVSS v2 base score of 7.5 (HIGH) and a network attack vector wi...
CVE-2008-1872
SQL injection vulnerability in home.news.php in Comdev News Publisher 4.1.2 allows remote attackers to execute arbitrary SQL commands via the arcmonth parameter. NOTE: some of these details are obtained from third party information...
Comdev News Publisher 4.1.2 - SQL Injection
Comdev News Publisher 4.1.2 - SQL Injection --==+================================================================================+==-- --==+ Comdev News Publisher SQL Injection Vulnerbilitys +==-- --==+================================================================================+==-- Discovere...
Comdev News Publisher Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications ======================================================== Comdev News Publisher Remote SQL Injection Vulnerability ========================================================...
comdev-sql.txt
--==+================================================================================+==-- --==+ Comdev News Publisher SQL Injection Vulnerbilitys +==-- --==+================================================================================+==-- Discovered By: t0pP8uZz & xprog Discovered On: 4 Apri...
Comdev News Publisher 4.1.2 - SQL Injection
--==+================================================================================+==-- --==+ Comdev News Publisher SQL Injection Vulnerbilitys +==-- --==+================================================================================+==-- Discovered By: t0pP8uZz & xprog Discovered On: 4 Apri...
comdevecom-rfi.txt
Comdev eCommerce 4.1 RFI Vulnerability Infomation:- Scripts: Comdev eCommerce Download: http://www.comdevweb.com/downloadfile.php?product=ECOMM41&url=http://share.comdevweb.com/download/ecommerce-4.1.zip Version : 4.1 Exploit :...
comdevwb-rfi.txt
Comdev Web Blogger 4.1 RFI Vulnerability Infomation:- Scripts: Comdev Web Blogger Download: http://www.comdevweb.com/downloadfile.php?product=BLOGG41&url=http://share.comdevweb.com/download/blogger-4.1.zip Version : 4.1 Exploit :...
Remote file inclusion
PHP remote file inclusion vulnerability in sampleblogger.php in Comdev Web Blogger 4.1 allows remote attackers to execute arbitrary PHP code via a URL in the pathdocroot parameter, a different vector than CVE-2006-5441...
CVE-2007-3084
PHP remote file inclusion vulnerability in sampleblogger.php in Comdev Web Blogger 4.1 allows remote attackers to execute arbitrary PHP code via a URL in the pathdocroot parameter, a different vector than CVE-2006-5441...
CVE-2007-3084
The CVE-2007-3084 entry describes a PHP remote file inclusion vulnerability in Comdev Web Blogger 4.1. Specifically, sampleblogger.php is vulnerable to arbitrary PHP code execution via a URL supplied in the path[docroot] parameter, representing a different vector from CVE-2006-5441. The available...
CVE-2007-3081
PHP remote file inclusion vulnerability in sampleecommerce.php in Comdev eCommerce 4.1 allows remote attackers to execute arbitrary PHP code via a URL in the pathdocroot parameter...
CVE-2007-3081
CVE-2007-3081 is a documented PHP remote file inclusion in Comdev eCommerce 4.1 , affecting the file sampleecommerce.php via a URL in the path[docroot] parameter, allowing remote arbitrary PHP code execution. This is supported by multiple feeds (NVD, CVE lists, PRION, CVELIST) and has a CVSSv2 ba...
Comdev eCommerce 4.1 RFI Vulnerability
Comdev eCommerce 4.1 RFI Vulnerability Infomation:- Scripts: Comdev eCommerce Download: http://www.comdevweb.com/downloadfile.php?product=ECOMM41&url=http://share.comdevweb.com/download/ecommerce-4.1.zip Version : 4.1 Exploit :...
Comdev Web Blogger 4.1 RFI Vulnerability
Comdev Web Blogger 4.1 RFI Vulnerability Infomation:- Scripts: Comdev Web Blogger Download: http://www.comdevweb.com/downloadfile.php?product=BLOGG41&url=http://share.comdevweb.com/download/blogger-4.1.zip Version : 4.1 Exploit :...
CVE-2007-2422
Multiple PHP remote file inclusion vulnerabilities in Modules Builder modbuild 4.1 for Comdev One Admin allow remote attackers to execute arbitrary PHP code via a URL in the pathdocroot parameter to 1 config-bak.php or 2 config.php. NOTE: CVE disputes this vulnerability because the unmodified...
Remote file inclusion
Multiple PHP remote file inclusion vulnerabilities in Modules Builder modbuild 4.1 for Comdev One Admin allow remote attackers to execute arbitrary PHP code via a URL in the pathdocroot parameter to 1 config-bak.php or 2 config.php. NOTE: CVE disputes this vulnerability because the unmodified...
CVE-2007-2422
Multiple PHP remote file inclusion vulnerabilities in Modules Builder modbuild 4.1 for Comdev One Admin allow remote attackers to execute arbitrary PHP code via a URL in the pathdocroot parameter to 1 config-bak.php or 2 config.php. NOTE: CVE disputes this vulnerability because the unmodified...