10 matches found
EUVD-2006-2573
Malware in sbrugna...
EUVD-2006-2572
Malware in sbrugna...
Cross site scripting
Cross-site scripting XSS vulnerability in index.php in DGBook 1.0 allows remote attackers to inject arbitrary web script or HTML via the 1 name, 2 homepage, 3 email, and 4 address parameters...
CVE-2006-2573
SQL injection vulnerability in index.php in DGBook 1.0, with magicquotesgpc disabled, allows remote attackers to execute arbitrary SQL commands via the 1 name, 2 email, 3 homepage, 4 address, 5 comment, and 6 ip parameters. NOTE: the provenance of this information is unknown; the details are...
CVE-2006-2572
Cross-site scripting XSS vulnerability in index.php in DGBook 1.0 allows remote attackers to inject arbitrary web script or HTML via the 1 name, 2 homepage, 3 email, and 4 address parameters...
Sql injection
SQL injection vulnerability in index.php in DGBook 1.0, with magicquotesgpc disabled, allows remote attackers to execute arbitrary SQL commands via the 1 name, 2 email, 3 homepage, 4 address, 5 comment, and 6 ip parameters. NOTE: the provenance of this information is unknown; the details are...
CVE-2006-2573
DGBook 1.0 is affected by a SQL injection in index.php when magic_quotes_gpc is disabled. The vulnerability allows remote attackers to inject and execute arbitrary SQL via the following parameters: name, email, homepage, address, comment, and ip. The issue stems from unsafe handling of user input...
CVE-2006-2573
SQL injection vulnerability in index.php in DGBook 1.0, with magicquotesgpc disabled, allows remote attackers to execute arbitrary SQL commands via the 1 name, 2 email, 3 homepage, 4 address, 5 comment, and 6 ip parameters. NOTE: the provenance of this information is unknown; the details are...
CVE-2006-2572
CVE-2006-2572 describes a stored/reflected XSS vulnerability in DGBook 1.0, specifically in index.php, where user-supplied inputs for name, homepage, email, and address can be manipulated to inject arbitrary web script or HTML. The vulnerability affects the DGBook 1.0 web application and is detai...
CVE-2006-2572
Cross-site scripting XSS vulnerability in index.php in DGBook 1.0 allows remote attackers to inject arbitrary web script or HTML via the 1 name, 2 homepage, 3 email, and 4 address parameters...