EUVD-2005-3574

Malware in sbrugna...

EUVD-2005-3236

Malware in sbrugna...

EUVD-2005-3235

Malware in sbrugna...

Cyphor 0.19 lostpwd.php nick Field SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15047/info Cyphor is prone to multiple cross-site scripting and SQL injection vulnerabilities. Exploitation could allow for theft of cookie-based authentication credentials or unauthorized access to database data. Other...

Cyphor 0.19 newmsg.php fid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15047/info Cyphor is prone to multiple cross-site scripting and SQL injection vulnerabilities. Exploitation could allow for theft of cookie-based authentication credentials or unauthorized access to database data. Other...

Cyphor 0.19 footer.php t_login Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/15047/info Cyphor is prone to multiple cross-site scripting and SQL injection vulnerabilities. Exploitation could allow for theft of cookie-based authentication credentials or unauthorized access to database data. Other...

Cyphor <= 0.19 (board takeover) SQL Injection Exploit

No description provided by source. ?php quoted from rgod 1if magic quotes off - SQL Injection: /str0ke --- cyphor019xpl.php 7.36 08/10/2005 Cyphor 0.19 possibly prior versions SQL injection / board takeover by rgod site: http://rgod.altervista.org make these changes in php.ini if you have trouble...

CVE-2005-3575

SQL injection vulnerability in show.php in Cyphor 0.19 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...

CVE-2005-3575

CVE-2005-3575 affects Cyphor 0.19 and earlier. The vulnerability is an SQL injection in show.php via the id parameter, allowing remote attackers to execute arbitrary SQL commands. Documented impact per CVSS indicates partial confidentiality, integrity, and availability impacts (base score 7.5; ne...

CVE-2005-3575

SQL injection vulnerability in show.php in Cyphor 0.19 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...

Cyphor &#40;Release: 0.19&#41; Sql injection

Hello This is sql injection in cyphor Discovered by : HACKERS PAL Greets For Devil-00 - Abducter - Almaster -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- injected vresions :- Cyphor Release: 0.19 and all Versions Up To now -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- injected File show.php...

cyphorSQL.txt

Hello This is sql injection in cyphor Discovered by : HACKERS PAL Greets For Devil-00 - Abducter - Almaster -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- injected vresions :- Cyphor Release: 0.19 and all Versions Up To now -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- injected File show.php...

Cyphor 0.19 - show.php?id SQL Injection

Cyphor 0.19 - show.php?id SQL Injection !/bin/env perl //----------------------------------------------------------- // Cyphor Forum SQL Injection Exploit .. By HACKERS PAL // Greets For Devil-00 - Abducter - Almaster // http://WwW.SoQoR.NeT...

Cyphor 0.19 - &#039;show.php?id&#039; SQL Injection

!/bin/env perl //----------------------------------------------------------- // Cyphor Forum SQL Injection Exploit .. By HACKERS PAL // Greets For Devil-00 - Abducter - Almaster // http://WwW.SoQoR.NeT //----------------------------------------------------------- use LWP::Simple; print "\n"; prin...

Cyphor 0.19 (show.php id) Remote SQL Injection Exploit

No description provided by source. !/bin/env perl //----------------------------------------------------------- // Cyphor Forum SQL Injection Exploit .. By HACKERS PAL // Greets For Devil-00 - Abducter - Almaster // http://WwW.SoQoR.NeT //----------------------------------------------------------...

Cyphor 0.19 (show.php id) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ====================================================== Cyphor 0.19 show.php id Remote SQL Injection Exploit ====================================================== !/bin/env perl //-----------------------------------------------------------...

CVE-2005-3237

Cross-site scripting XSS vulnerability in Cyphor 0.19 allows remote attackers to inject arbitrary web script or HTML via the tlogin parameter of footer.php...

CVE-2005-3236

Multiple SQL injection vulnerabilities in Cyphor 0.19 allow remote attackers to execute arbitrary SQL and obtain administrative access via 1 the fid parameter of newmsg.php, which can enable XSS attacks when the SQL syntax is invalid or 2 the nick parameter of lostpwd.php...

CVE-2005-3237

CVE-2005-3237 describes a cross‑site scripting (XSS) vulnerability in Cyphor 0.19. The flaw allows remote attackers to inject arbitrary web script or HTML via the t_login parameter of footer.php. Per the NVD entry, the impact is limited to integrity (PARTIAL) with no confidentiality or availabili...

CVE-2005-3236

Cyphor 0.19 is affected by two SQL injection vulnerabilities described in CVE-2005-3236. The issues reside in (1) newmsg.php using the fid parameter and (2) lostpwd.php using the nick parameter. Successful exploitation can allow remote attackers to execute arbitrary SQL and potentially gain admin...