EUVD-2004-1595

Malware in sbrugna...

EUVD-2006-2813

Malware in sbrugna...

EUVD-2004-1593

Malware in sbrugna...

CoolPHP Index.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18124/info CoolPHP is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script...

CoolPHP 1.0 - Multiple Remote Input Validation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/11437/info Reportedly CoolPHP is affected by multiple remote input validation vulnerabilities. These issues are due to a failure of the application to properly sanitize user supplied input prior to using it to make critic...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in index.php in coolphp magazine allow remote attackers to inject arbitrary web script or HTML via the 1 op and 2 nick parameters, and possibly the 3 0000, 4 userinfo, 5 compder, 6 encuestas, and 7 pagina parameters. NOTE: it is not clear whether...

CVE-2006-2816

CVE-2006-2816 describes multiple XSS vulnerabilities in index.php of CoolPHP Magazine. The issue affects the web application’s index.php and is exploitable via the (1) op and (2) nick parameters, and possibly (3) 0000, (4) userinfo, (5) comp_der, (6) encuestas, and (7) pagina parameters. The note...

RE: Multiple Xss exploits in coolphp magazine

Subject: Multiple Xss exploits in coolphp magazine Date: 27 May 2006 14:25:31 -0000 Multiple Xss exploits in coolphp magazine script type : coolphp magazine bug found by : black-code & sweet-devil team : site-down type : Xss Codes : http://www.xxx.com/coolphp/index.php?op='scriptalert10/script...

CoolPHP - index.php Cross-Site Scripting

CoolPHP - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/18124/info CoolPHP is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary...

CVE-2004-1599

CVE-2004-1599 concerns a Cross-site Scripting (XSS) vulnerability in CoolPHP 1.0-stable, exploitable via index.php using the query or nick parameters. The underlying issue is insufficient input handling in the affected script, allowing an attacker to inject and execute arbitrary web scripts/HTML ...

CVE-2004-1601

Directory traversal vulnerability in index.php in CoolPHP 1.0-stable allows remote attackers to access arbitrary files and execute local PHP scripts via a .. dot dot in the op parameter...

CVE-2004-1600

CVE-2004-1600 affects index.php in CoolPHP 1.0-stable, where a malformed op parameter allows remote attackers to reveal the path in an error message, exposing sensitive information (NVD: CVSSv2 base 5.0, MEDIUM). The issue is described consistently across NVD/CVE references; no remediation or exp...

CVE-2004-1599

Cross-site scripting XSS vulnerability in index.php in CoolPHP 1.0-stable allows remote attackers to execute arbitrary web script or HTML via the 1 query or 2 nick parameters...

CVE-2004-1600

index.php in CoolPHP 1.0-stable allows remote attackers to gain sensitive information via an invalid op parameter, which reveals the path in an error message...

CVE-2004-1601

The CVE-2004-1601 entry concerns CoolPHP 1.0-stable. Affected component: index.php; vulnerability: directory traversal via the op parameter using .. to access arbitrary files and execute local PHP scripts. Root cause: improper input validation leading to path traversal. Exploitation details are n...

cht-security.txt

CHT Security Research Center-2004 http://www.CyberSpy.Org Turkey Software: CoolPHP Web Site: http://cphp.sourceforge.net/ Affected Versions: 1.0-stable Description: CoolPHP is a PHP based portal system.It requires A Web server with PHP=PHP4 support and MySQL. It's compatible with NIX and NT...

CoolPHP 1.0 Multiple Vulnerabilities

The remote host is running the CoolPHP Content Management system. There are various flaws in the remote version of this software which may allow an attacker to read arbitrary files on the remote host or to set up a cross-site scripting attack. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

CVE-2004-1599

Cross-site scripting XSS vulnerability in index.php in CoolPHP 1.0-stable allows remote attackers to execute arbitrary web script or HTML via the 1 query or 2 nick parameters...

CVE-2004-1601

Directory traversal vulnerability in index.php in CoolPHP 1.0-stable allows remote attackers to access arbitrary files and execute local PHP scripts via a .. dot dot in the op parameter...

CVE-2004-1600

index.php in CoolPHP 1.0-stable allows remote attackers to gain sensitive information via an invalid op parameter, which reveals the path in an error message...