4 matches found
CVE-2008-0186
Cross-site scripting XSS vulnerability in index.php in NetRisk 1.9.7 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the page parameter, possibly related to CVE-2008-0144...
Cross site scripting
Cross-site scripting XSS vulnerability in index.php in NetRisk 1.9.7 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the page parameter, possibly related to CVE-2008-0144...
Immunity Canvas: NETRISK_INCLUDE
Name| netriskinclude ---|--- CVE| CVE-2008-0144 Exploit Pack| CANVAS Description| netRisk remote file include Notes| CVE Name: CVE-2008-0144 VENDOR: netRisk Repeatability: Infinite References: http://secunia.com/advisories/28328 CVE Url:...
CVE-2008-0144
NetRisk 1.9.7 and earlier is affected by CVE-2008-0144: a PHP remote file inclusion in index.php via the page parameter can lead to arbitrary PHP code execution. The vulnerability can also be leveraged for local file inclusion through directory traversal sequences. This is a remote exploit over t...