16 matches found
EUVD-2005-0885
Malware in sbrugna...
EUVD-2008-1983
Malware in sbrugna...
EUVD-2005-0884
Malware in sbrugna...
Cross site scripting
Cross-site scripting XSS vulnerability in base.php in DigitalHive 2.0 RC2 allows remote attackers to inject arbitrary web script or HTML via the mt parameter, possibly related to membres.php...
CVE-2008-1985
Cross-site scripting XSS vulnerability in base.php in DigitalHive 2.0 RC2 allows remote attackers to inject arbitrary web script or HTML via the mt parameter, possibly related to membres.php...
CVE-2008-1985
Cross-site scripting XSS vulnerability in base.php in DigitalHive 2.0 RC2 allows remote attackers to inject arbitrary web script or HTML via the mt parameter, possibly related to membres.php...
CVE-2008-1985
This CVE concerns DigitalHive 2.0 RC2 with a Cross-site scripting (XSS) vulnerability in base.php, exploitable via the mt parameter and possibly related to membres.php. The NVD assessment assigns a CVSS v2 base score 4.3 (Medium), with network attack vector, no authentication required, and partia...
CVE-2006-5493
PHP remote file inclusion vulnerability in template/purpletech/baseinclude.php in DigitalHive 2.0 RC2 allows remote attackers to execute arbitrary PHP code via a URL in the page parameter...
CVE-2006-5493
CVE-2006-5493 affects DigitalHive 2.0 RC2. The issue is a PHP remote file inclusion in template/purpletech/base_include.php that lets an attacker execute arbitrary PHP code by supplying a URL in the page parameter. Impact is user-controlled PHP execution with partial confidentiality/integrity/ava...
DigitalHive2.0.txt
DigitalHive 2.0 RC2 baseinclude.phpFile Include Source Code: http://www.comscripts.com/jump.php?action=script&id=1502 Vulnerable Code: include $GET"page"; Exploit : http://www.vicTim.com/Path/template/purpletech/baseinclude.php?page=shell.txt? Discoverd By : Mahmoodali Conatact :...
CVE-2005-0884
DigitalHive 2.0 allows remote attackers to re-install the product by directly accessing the install script...
CVE-2005-0883
Multiple cross-site scripting XSS vulnerabilities in base.php for DigitalHive 2.0 allow remote attackers to inject arbitrary web script or HTML via 1 the mt parameter to the membres.php page or 2 the -afs-1- query string to the msg.php page...
CVE-2005-0883
CVE-2005-0883 describes two reflected XSS vulnerabilities in DigitalHive 2.0's base.php: (1) mt parameter to membres.php and (2) -afs-1- query string to msg.php. Attackers can inject arbitrary web script/HTML via these inputs. The provided documents do not specify a patch or workaround within thi...
CVE-2005-0884
CVE-2005-0884 (DigitalHive 2.0) is described across NVD and CVE records as a remote-access issue where an attacker can re-install the product by directly accessing the install script. The connected documents confirm the affected product (DigitalHive 2.0) and the described attack vector, but do no...
CVE-2005-0884
DigitalHive 2.0 allows remote attackers to re-install the product by directly accessing the install script...
CVE-2005-0883
Multiple cross-site scripting XSS vulnerabilities in base.php for DigitalHive 2.0 allow remote attackers to inject arbitrary web script or HTML via 1 the mt parameter to the membres.php page or 2 the -afs-1- query string to the msg.php page...