16 matches found
EUVD-2009-3172
Malware in sbrugna...
EUVD-2006-5636
Malware in sbrugna...
CVE-2009-3189
Cross-site scripting XSS vulnerability in search.php in DigiOz Guestbook 1.7.2 allows remote attackers to inject arbitrary web script or HTML via the searchterm parameter...
CVE-2009-3189
Cross-site scripting XSS vulnerability in search.php in DigiOz Guestbook 1.7.2 allows remote attackers to inject arbitrary web script or HTML via the searchterm parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in search.php in DigiOz Guestbook 1.7.2 allows remote attackers to inject arbitrary web script or HTML via the searchterm parameter...
CVE-2009-3189
Cross-site scripting XSS vulnerability in search.php in DigiOz Guestbook 1.7.2 allows remote attackers to inject arbitrary web script or HTML via the searchterm parameter...
CVE-2009-3189
The CVE-2009-3189 entry describes an XSS in DigiOz Guestbook 1.7.2, exploitable through the search_term parameter in search.php, allowing remote injection of script/HTML. No remediation details are provided in the supplied documents.
DigiOz Guestbook 1.7.2 XSS
/ | | \ \ / / | | \ \ / / | |\ \ /\ / / | | | | | | \ V /| | | \ V V / | | || | || / ||| // ,|, | |/ | | | |/ / | ' \ | | / | | | | | | | |||,|| || || DigiOz Guestbook 1.7.2 Remote XSS Vulnerabilities Discovered By : Moudi Contact : Download : http://www.digioz.com/guestbook/guestbook.zip...
DigiOz Guestbook 1.7.2 - search.php Cross-Site Scripting
DigiOz Guestbook 1.7.2 - search.php Cross-Site Scripting source: https://www.securityfocus.com/bid/44237/info DigiOz Guestbook is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary...
DigiOz Guestbook 1.7.2 - 'search.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/44237/info DigiOz Guestbook is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...
digioz-rfi.txt
DigiOz Guestbook 1.7.1 --------------------------- App: DigiOz Guestbook 1.7.1 Source: http://www.digioz.com/guestbook/guestbook.zip Author: Arham Muhammad Dork: "Powered by DigiOz Guestbook Version 1.7.1" Vulnerable File: /admin/deleteprocess.php Vulnerable Code: $id = $GET'id'; This Vulnerabili...
DigiOz Guestbook version 1.7 Path Disclosure Vulnerability in list.php
DigiOz Guestbook version 1.7 Path Disclosure Vulnerability in list.php Description: The DigiOz Guestbook is a PHP driven guestbook system. The vulnerability exists in list.php script which allows remote attackers to obtain sensitive information via an HTTP request to list.php that contains wrong...
CVE-2006-5651
list.php in DigiOz Guestbook before 1.7.1 allows remote attackers to obtain sensitive information via a non-numeric page parameter, which displays the installation path in the resulting error message...
CVE-2006-5651
CVE-2006-5651 affects DigiOz Guestbook up to version 1.7.1. The vulnerability resides in the PHP script list.php, where an incorrect page parameter value leads to an error message that leaks the server installation path. The issue is described as an input validation fault in list.php, allowing re...
CVE-2006-5651
list.php in DigiOz Guestbook before 1.7.1 allows remote attackers to obtain sensitive information via a non-numeric page parameter, which displays the installation path in the resulting error message...
[Full-disclosure] DigiOz Guestbook version 1.7 Path Disclosure Vulnerability in list.php
DigiOz Guestbook version 1.7 Path Disclosure Vulnerability in list.php Description: The DigiOz Guestbook is a PHP driven guestbook system. The vulnerability exists in list.php script which allows remote attackers to obtain sensitive information via an HTTP request to list.php that contains wrong...