EUVD-2006-5761

Malware in sbrugna...

EUVD-2009-4887

Malware in sbrugna...

Creasito 'username' SQL Injection Vulnerability

Creasito is prone to an SQL injection SQLi vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2009-4925

Multiple SQL injection vulnerabilities in Portale e-commerce Creasito aka creasito e-commerce content manager 1.3.16, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the username parameter to 1 admin/checkuser.php and 2 checkuser.php...

Sql injection

Multiple SQL injection vulnerabilities in Portale e-commerce Creasito aka creasito e-commerce content manager 1.3.16, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the username parameter to 1 admin/checkuser.php and 2 checkuser.php...

CVE-2009-4925

Creasito e-commerce content manager (Portale Creasito) 1.3.16 is affected by multiple SQL injection vulnerabilities. The issue allows remote attackers to inject arbitrary SQL via the username parameter to admin/checkuser.php and checkuser.php when magic_quotes_gpc is disabled. Affected product/ve...

CVE-2009-4925

Multiple SQL injection vulnerabilities in Portale e-commerce Creasito aka creasito e-commerce content manager 1.3.16, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the username parameter to 1 admin/checkuser.php and 2 checkuser.php...

Creasito e-Commerce 1.3.16 (Auth Bypass) SQL Injection Vuln

No description provided by source. Salvatore "drosophila" Fresta + Application: creasito e-commerce content manager + Version: 1.3.16 + Website: http://creasito.bloghosteria.com + Bugs: A Authentication Bypass + Exploitation: Remote + Date: 20 Apr 2009 + Discovered by: Salvatore "drosophila" Fres...

Creasito e-commerce content manager Authentication Bypass

Salvatore "drosophila" Fresta + Application: creasito e-commerce content manager + Version: 1.3.16 + Website: http://creasito.bloghosteria.com + Bugs: A Authentication Bypass + Exploitation: Remote + Date: 20 Apr 2009 + Discovered by: Salvatore "drosophila" Fresta + Author: Salvatore "drosophila"...

Creasito E-Commerce 1.3.16 - Authentication Bypass

Creasito E-Commerce 1.3.16 - Authentication Bypass Salvatore "drosophila" Fresta + Application: creasito e-commerce content manager + Version: 1.3.16 + Website: http://creasito.bloghosteria.com + Bugs: A Authentication Bypass + Exploitation: Remote + Date: 20 Apr 2009 + Discovered by: Salvatore...

Creasito e-Commerce 1.3.16 (Auth Bypass) SQL Injection Vuln

Exploit for unknown platform in category web applications =========================================================== Creasito e-Commerce 1.3.16 Auth Bypass SQL Injection Vuln =========================================================== Salvatore "drosophila" Fresta + Application: creasito...

Creasito E-Commerce 1.3.16 - Authentication Bypass

Salvatore "drosophila" Fresta + Application: creasito e-commerce content manager + Version: 1.3.16 + Website: http://creasito.bloghosteria.com + Bugs: A Authentication Bypass + Exploitation: Remote + Date: 20 Apr 2009 + Discovered by: Salvatore "drosophila" Fresta + Author: Salvatore "drosophila"...

Creasito E-Commerce SQL Injection

Salvatore "drosophila" Fresta + Application: creasito e-commerce content manager + Version: 1.3.16 + Website: http://creasito.bloghosteria.com + Bugs: A Authentication Bypass + Exploitation: Remote + Date: 20 Apr 2009 + Discovered by: Salvatore "drosophila" Fresta + Author: Salvatore "drosophila"...

CVE-2006-5777

CVE-2006-5777 affects Creasito E-Commerce Content Manager 1.3.08. The vulnerability allows remote attackers to bypass authentication and perform privileged functions by supplying a non-empty finame parameter to a long list of admin scripts (e.g., addnewcont.php, adminpassw.php, amministrazione.ph...

CVE-2006-5777

Creasito E-Commerce Content Manager 1.3.08 allows remote attackers to bypass authentication and perform privileged functions via a non-empty finame parameter to 1 addnewcont.php, 2 adminpassw.php, 3 amministrazione.php, 4 artins.php, 5 bgcolor.php, 6 cancartcat.php, 7 canccat.php, 8 cancelart.php...

Creasito E-Commerce Content Manager - admin Authentication Bypass

Creasito E-Commerce Content Manager - admin Authentication Bypass ============================================================================================ Creasito E-Commerce Content Manager admin Authentication Bypass...

Creasito E-Commerce Content Manager (admin) Authentication Bypass

No description provided by source. ============================================================================================ Creasito E-Commerce Content Manager admin Authentication Bypass ============================================================================================...

Creasito E-Commerce Content Manager - 'admin' Authentication Bypass

============================================================================================ Creasito E-Commerce Content Manager admin Authentication Bypass ============================================================================================ Product............: Creasito E-Commerce Conten...

Creasito E-Commerce Content Manager (admin) Authentication Bypass

Exploit for unknown platform in category web applications 0day.today 2018-04-10...