14 matches found
EUVD-2005-1572
Malware in sbrugna...
EUVD-2005-1570
Malware in sbrugna...
EUVD-2005-1571
Malware in sbrugna...
DirectTopics 2 Topic.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13608/info DirectTopics is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could...
dt_Multiple_vuln.txt
------------------------------------------------------------------------ Directtopics Multiple Vulnerabilities By : Morinex e-mail : [email protected] date : 08-04-2k5 shoutz : w00pie.nl Target : Directtopics Vulnerable Versions: DT 2 beta , DT2 final, 2.1, and 2.2 URL : www.directtopics.nl ...
CVE-2005-1569
Cross-site scripting XSS vulnerability in DirectTopics 2.1 and 2.2 allows remote attackers to inject arbitrary web script via a javascript: URL in 1 a thread or 2 an IMG tag...
CVE-2005-1567
SQL injection vulnerability in topic.php in DirectTopics 2.1 and 2.2 allows remote attackers to execute arbitrary SQL commands via the topic parameter...
CVE-2005-1569
Cross-site scripting XSS vulnerability in DirectTopics 2.1 and 2.2 allows remote attackers to inject arbitrary web script via a javascript: URL in 1 a thread or 2 an IMG tag...
CVE-2005-1568
topic.php in DirectTopics 2.1 and 2.2 allows remote attackers to obtain sensitive information via an invalid topic parameter, which reveals the path in an error message...
CVE-2005-1567
CVE-2005-1567 is a SQL injection vulnerability in DirectTopics 2.1 and 2.2, affecting topic.php. The issue lets remote attackers modify the SQL executed by the application via the topic parameter, enabling arbitrary SQL commands. This impact is described in the NVD entry (vector: network, low com...
CVE-2005-1568
CVE-2005-1568 affects DirectTopics 2.1 and 2.2. The flaw arises in topic.php where an invalid topic parameter can cause the server to disclose the path in an error message, leaking sensitive information. The NVD metrics indicate a base score of 5.0 (Medium) with network access required and no aut...
CVE-2005-1569
The CVE-2005-1569 entry describes a Cross-site Scripting (XSS) flaw in DirectTopics 2.1 and 2.2. The vulnerability arises from accepting a javascript: URL in either a thread context or an IMG tag, enabling remote script injection. Affected product is DirectTopics (versions 2.1/2.2); root cause is...
Directtopics Multiple Vulnerabilities (Security Advisory)
------------------------------------------------------------------------ Directtopics Multiple Vulnerabilities Security Advisory By : Morinex e-mail : [email protected] date : 08-04-2k5 shoutz : w00pie.nl Target : Directtopics Vulnerable Versions: DT 2 beta , DT2 final, 2.1, and 2.2 URL :...
CVE-2005-1568
topic.php in DirectTopics 2.1 and 2.2 allows remote attackers to obtain sensitive information via an invalid topic parameter, which reveals the path in an error message...