EUVD-2006-1916

Malware in sbrugna...

EUVD-2006-1914

Malware in sbrugna...

DbbS 2.0 - Multiple Input Validation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/17559/info DbbS is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and command-execution vulnerabilities. These issues are due to a failure in the application to properly saniti...

DbbS 2.0 Topics.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17338/info DbbS is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an...

Sql injection

SQL injection vulnerability in topics.php in DbbS 2.0-alpha and earlier allows remote attackers to execute arbitrary SQL commands via the fcategoryid parameter...

Design/Logic Flaw

DbbS 2.0-alpha and earlier allows remote attackers to obtain sensitive information via an invalid 1 fcategoryid parameter to topics.php or 2 unavariabile, 3 GLOBALS, or 4 SERVER parameters to script.php. NOTE: this information leak might be resultant from a global variable overwrite issue...

CVE-2006-1915

SQL injection vulnerability in topics.php in DbbS 2.0-alpha and earlier allows remote attackers to execute arbitrary SQL commands via the fcategoryid parameter...

CVE-2006-1914

DbbS 2.0-alpha and earlier allows remote attackers to obtain sensitive information via an invalid 1 fcategoryid parameter to topics.php or 2 unavariabile, 3 GLOBALS, or 4 SERVER parameters to script.php. NOTE: this information leak might be resultant from a global variable overwrite issue...

CVE-2006-1916

Multiple cross-site scripting XSS vulnerabilities in profile.php in DbbS 2.0-alpha and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 ulocation or 2 uhobbies parameters...

CVE-2006-1916

CVE-2006-1916 concerns multiple cross-site scripting (XSS) vulnerabilities in profile.php of DbbS 2.0-alpha and earlier. The vulnerabilities arise from unsafely handling user input in the (1) ulocation and (2) uhobbies parameters, enabling remote attackers to inject arbitrary script/HTML. The con...

CVE-2006-1914

DbbS 2.0-alpha and earlier allows remote attackers to obtain sensitive information via an invalid 1 fcategoryid parameter to topics.php or 2 unavariabile, 3 GLOBALS, or 4 SERVER parameters to script.php. NOTE: this information leak might be resultant from a global variable overwrite issue...

CVE-2006-1916

Multiple cross-site scripting XSS vulnerabilities in profile.php in DbbS 2.0-alpha and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 ulocation or 2 uhobbies parameters...

CVE-2006-1915

The CVE-2006-1915 entry affects DbbS 2.0-alpha and earlier, with a vulnerability in topics.php where the fcategoryid parameter is unsafely used, enabling remote attackers to execute arbitrary SQL commands. Root cause is likely improper input handling leading to SQL injection. Impact is arbitrary ...

DbbS 2.0 - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/17559/info DbbS is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and command-execution vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacke...

DbbS 2.0 - Multiple Input Validation Vulnerabilities

DbbS 2.0 - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/17559/info DbbS is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and command-execution vulnerabilities. These issues are due to a failure in the application...

CVE-2006-1579

SQL injection vulnerability in topics.php in Dynamic Bulletin Board System DbbS 2.0-alpha and earlier allows remote attackers to execute arbitrary SQL commands via the limite parameter...

CVE-2006-1579

The CVE-2006-1579 entry describes a SQL injection in topics.php of Dynamic Bulletin Board System (DbbS) 2.0-alpha and earlier, exploitable via the limite parameter to execute arbitrary SQL queries. Affected component: topics.php in DbbS

DbbS<=2.0-alpha SQL injection

author: DaBDouB-MoSiKaR Moroccan Security Team site: http://www.dbbs.sup.fr/ greetz to : Moroccan Security Team CiM-TeaM and All Freinds exemple: http://target/topics.php?fid=3&limite=sql inbox:DaBDouB-MoSiKaRatmoroccan-securitydotcom...

DbbS 2.0 - 'Topics.php' SQL Injection

source: https://www.securityfocus.com/bid/17338/info DbbS is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromise the...

DbbS 2.0 - Topics.php SQL Injection

DbbS 2.0 - Topics.php SQL Injection source: https://www.securityfocus.com/bid/17338/info DbbS is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an...