19 matches found
EUVD-2010-4815
Malware in sbrugna...
Diferior 8.03 Multiple XSS Vulnerabilities
No description provided by source. Vulnerability ID: HTB22721 Reference: http://www.htbridge.ch/advisory/storedxsscrosssitescriptingvulnerabilityindiferior.html Product: Diferior Vendor: Povilas Musteikis http://www.diferior.com/ Vulnerable Version: 8.03 and probably prior versions Vendor...
Diferior CMS 8.03 Multiple CSRF Vulnerabilities
No description provided by source. !--- Title: Diferior CMS 8.03 Multiple CSRF Vulnerabilities Author: 10n1z3d 10n1z3datwdotcn Date: Tue 13 Jul 2010 11:50:32 AM EEST Vendor: http://diferior.com/ Download: http://diferior.com/postfiles/news/diferior-8-03-released/Diferiorv8.03.tar.gz --- -= CSRF P...
CVE-2010-4850
Multiple cross-site scripting XSS vulnerabilities in Diferior 8.03 allow remote attackers to inject arbitrary web script or HTML via the 1 postcontent parameter to post/edit/2/p1.html, related to views/post.php; the 2 slogan parameter to admin/site/2.html, related to views/admin.php; or the 3...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Diferior 8.03 allow remote attackers to inject arbitrary web script or HTML via the 1 postcontent parameter to post/edit/2/p1.html, related to views/post.php; the 2 slogan parameter to admin/site/2.html, related to views/admin.php; or the 3...
CVE-2010-4850
Multiple cross-site scripting XSS vulnerabilities in Diferior 8.03 allow remote attackers to inject arbitrary web script or HTML via the 1 postcontent parameter to post/edit/2/p1.html, related to views/post.php; the 2 slogan parameter to admin/site/2.html, related to views/admin.php; or the 3...
CVE-2010-4850
CVE-2010-4850 affects Diferior 8.03, with multiple XSS vulnerabilities in post_content (post/edit/2/p1.html), slogan (admin/site/2.html), and subcatname/description (admin/forum/create_sub.html). Root cause is insufficient input sanitization, allowing remote attackers to inject arbitrary script/H...
Cross Site Scripting vulnerability in Diferior
Vulnerability ID: HTB22722 Reference: http://www.htbridge.ch/advisory/crosssitescriptingvulnerabilityindiferior.html Product: Diferior Vendor: Povilas Musteikis http://www.diferior.com/ Vulnerable Version: 8.03 and probably prior versions Vendor Notification: 25 November 2010 Vulnerability Type:...
XSS vulnerability in Diferior
Vulnerability ID: HTB22720 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityindiferior.html Product: Diferior Vendor: Povilas Musteikis http://www.diferior.com/ Vulnerable Version: 8.03 and probably prior versions Vendor Notification: 25 November 2010 Vulnerability Type: Stored XSS Cros...
Diferior 8.03 Cross Site Scripting
====================================== Vulnerability ID: HTB22722 Reference: http://www.htbridge.ch/advisory/crosssitescriptingvulnerabilityindiferior.html Product: Diferior Vendor: Povilas Musteikis http://www.diferior.com/ Vulnerable Version: 8.03 and probably prior versions Vendor Notification...
Stored XSS (Cross Site Scripting) vulnerability in Diferior
Vulnerability ID: HTB22721 Reference: http://www.htbridge.ch/advisory/storedxsscrosssitescriptingvulnerabilityindiferior.html Product: Diferior Vendor: Povilas Musteikis http://www.diferior.com/ Vulnerable Version: 8.03 and probably prior versions Vendor Notification: Vulnerability Type: Stored X...
Diferior 8.03 XSS Vulnerability
Exploit for php platform in category web applications =============================== Diferior 8.03 XSS Vulnerability =============================== Product: Diferior Vendor: Povilas Musteikis http://www.diferior.com/ Vulnerable Version: 8.03 and probably prior versions Vendor Notification:...
Diferior 8.03 Cross Site Scripting
Vulnerability ID: HTB22721 Reference: http://www.htbridge.ch/advisory/storedxsscrosssitescriptingvulnerabilityindiferior.html Product: Diferior Vendor: Povilas Musteikis http://www.diferior.com/ Vulnerable Version: 8.03 and probably prior versions Vendor Notification: Vulnerability Type: Stored X...
Diferior 8.03 - Multiple Cross-Site Scripting Vulnerabilities
Diferior 8.03 - Multiple Cross-Site Scripting Vulnerabilities Vulnerability ID: HTB22721 Reference: http://www.htbridge.ch/advisory/storedxsscrosssitescriptingvulnerabilityindiferior.html Product: Diferior Vendor: Povilas Musteikis http://www.diferior.com/ Vulnerable Version: 8.03 and probably...
Diferior 8.03 - Multiple Cross-Site Scripting Vulnerabilities
Vulnerability ID: HTB22721 Reference: http://www.htbridge.ch/advisory/storedxsscrosssitescriptingvulnerabilityindiferior.html Product: Diferior Vendor: Povilas Musteikis http://www.diferior.com/ Vulnerable Version: 8.03 and probably prior versions Vendor Notification: Vulnerability Type: Stored X...
Multiple Vulnerabilities in Diferior
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Diferior which could be exploited to perform script insertion and cross-site request forgery attacks. 1 Script insertion vulnerability in Diferior: CVE-2010-4850 Input passed to the "postcontent" parameter in...
Diferior CMS 8.03 Cross Site Request Forgery
Date: Tue 13 Jul 2010 11:50:32 AM EEST Vendor: http://diferior.com/ Download: http://diferior.com/postfiles/news/diferior-8-03-released/Diferiorv8.03.tar.gz --- -= CSRF PoC 1 - Change Admin Password =- Diferior CMS 8.03 Multiple CSRF Vulnerabilities - Change Admin Password -= CSRF PoC 2 - Change...
Diferior CMS 8.03 Multiple CSRF Vulnerabilities
Exploit for php platform in category web applications =============================================== Diferior CMS 8.03 Multiple CSRF Vulnerabilities =============================================== Date: Tue 13 Jul 2010 11:50:32 AM EEST Vendor: http://diferior.com/ Download:...
Diferior CMS 8.03 - Multiple Cross-Site Request Forgery Vulnerabilities
Diferior CMS 8.03 - Multiple Cross-Site Request Forgery Vulnerabilities Date: Tue 13 Jul 2010 11:50:32 AM EEST Vendor: http://diferior.com/ Download: http://diferior.com/postfiles/news/diferior-8-03-released/Diferiorv8.03.tar.gz --- -= CSRF PoC 1 - Change Admin Password =- Diferior CMS 8.03...