10 matches found
EUVD-2014-1694
Malware in sbrugna...
Cubic CMS - Multiple Vulnerabilities
No description provided by source. I. BACKGROUND ------------------------- CUBIC CMS is a non-free content management system for websites and portals of any size, powerful, adaptable to any graphic design that allows users administration 100% professional but simple at the same time that website...
CVE-2014-1619
Multiple SQL injection vulnerabilities in Cubic CMS 5.1.1, 5.1.2, and 5.2 allow remote attackers to execute arbitrary SQL commands via the 1 resourceid or 2 versionid parameter to recursos/agent.php or 3 login or 4 pass parameter to login.usuario...
Sql injection
Multiple SQL injection vulnerabilities in Cubic CMS 5.1.1, 5.1.2, and 5.2 allow remote attackers to execute arbitrary SQL commands via the 1 resourceid or 2 versionid parameter to recursos/agent.php or 3 login or 4 pass parameter to login.usuario...
CVE-2014-1619
Multiple SQL injection vulnerabilities in Cubic CMS 5.1.1, 5.1.2, and 5.2 allow remote attackers to execute arbitrary SQL commands via the 1 resourceid or 2 versionid parameter to recursos/agent.php or 3 login or 4 pass parameter to login.usuario...
CVE-2014-1619
CVE-2014-1619 affects Cubic CMS versions 5.1.1, 5.1.2 and 5.2, with multiple SQL injection flaws in recursos/agent.php (parameters resource_id and version_id) and login.usuario (login or pass). These allow remote attackers to execute arbitrary SQL commands. No remediation or exploit details are p...
Cubic CMS多个安全漏洞
Cubic CMS是一款内容管理系统。 由于/login.usuario没有正确过滤传递的'login'和'pass' POST参数的用户输入,允许远程攻击者注入或操纵SQL查询。 0 Cubic CMS 目前厂商暂无提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.cubicfactory.com/ I. BACKGROUND ------------------------- "CUBIC CMS" is a non-free content management system for websites and portals o...
Cubic CMS - Multiple Vulnerabilities
I. BACKGROUND ------------------------- "CUBIC CMS" is a non-free content management system for websites and portals of any size, powerful, adaptable to any graphic design that allows users administration 100% professional but simple at the same time that website. II. VULNERABILITIES...
Cubic CMS SQL Injection / LFI / Path Disclosure Vulnerabilties
Cubic CMS suffers from local file inclusion, path disclosure, and remote SQL injection vulnerabilities. Cubic CMS SQL Injection / LFI / Path Disclosure I. BACKGROUND ------------------------- "CUBIC CMS" is a non-free content management system for websites and portals of any size, powerful,...
Cubic CMS SQL Injection / LFI / Path Disclosure
I. BACKGROUND ------------------------- "CUBIC CMS" is a non-free content management system for websites and portals of any size, powerful, adaptable to any graphic design that allows users administration 100% professional but simple at the same time that website. II. VULNERABILITIES...