10 matches found
EUVD-2007-5962
Malware in sbrugna...
EUVD-2007-6027
Malware in sbrugna...
datecomm Social Networking Software Index.PHP远程文件包含漏洞
datecomm Social Networking Software是一款基于PHP的WEB应用程序。 datecomm Social Networking Software不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB权限执行任意PHP代码。 问题是由于'index.php'脚本对用户提交的'pg'参数缺少过滤,指定远程服务器上的任意文件作为包含参数,可导致以WEB权限执行任意PHP代码。 Datecomm Social Networking Script 目前没有详细解决方案提供: http://www.datecomm.com/...
CVE-2007-6057
PHP remote file inclusion vulnerability in index.php in datecomm Social Networking Script aka Myspace Clone Script allows remote attackers to execute arbitrary PHP code via a URL in the pg parameter...
CVE-2007-6057
CVE-2007-6057 affects the datecomm Social Networking Script (also known as the Myspace Clone Script). The vulnerability is a PHP remote file inclusion in the script’s index.php, allowing an attacker to execute arbitrary PHP code by supplying a URL in the pg parameter. This is confirmed across mul...
CVE-2007-6057
PHP remote file inclusion vulnerability in index.php in datecomm Social Networking Script aka Myspace Clone Script allows remote attackers to execute arbitrary PHP code via a URL in the pg parameter...
CVE-2007-5992
SQL injection vulnerability in index.php in datecomm Social Networking Script aka Myspace Clone Script allows remote attackers to execute arbitrary SQL commands via the seid parameter in a viewcat s action on the forums page...
CVE-2007-5992
The CVE-2007-5992 case concerns SQL injection in the datecomm Social Networking Script (aka Myspace Clone Script). Affected code path is index.php via the seid parameter in a viewcat action on the forums page, enabling remote attackers to execute arbitrary SQL commands. The vulnerability is descr...
CVE-2007-5992
SQL injection vulnerability in index.php in datecomm Social Networking Script aka Myspace Clone Script allows remote attackers to execute arbitrary SQL commands via the seid parameter in a viewcat s action on the forums page...
Datecomm 1.1 - Multiple Cross-Site Scripting Vulnerabilities
Datecomm 1.1 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/18502/info Datecomm is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may...