21 matches found
EUVD-2005-1376
Malware in sbrugna...
EUVD-2005-0890
Malware in sbrugna...
EUVD-2008-2033
Malware in sbrugna...
EUVD-2008-6180
Malware in sbrugna...
EUVD-2005-0891
Malware in sbrugna...
Dream4 Koobi CMS 4.2.3 Index.PHP Cross-Site Scripting Vulnerability
No description provided by source. !/usr/bin/env python coding: utf-8 from pocsuite.net import req from pocsuite.poc import POCBase, Output from pocsuite.utils import register from urlparse import urljoin class TestPOCPOCBase: vulID = 'SSV-78938' vul ID version = '1' author = 'hzr' vulDate =...
Sql injection
SQL injection vulnerability in index.php in dream4 Koobi 4.4 and 5.4 allows remote attackers to execute arbitrary SQL commands via the imgid parameter in the gallerypic page...
CVE-2008-6210
CVE-2008-6210 describes an SQL injection in the Dream4 Koobi application (versions 4.4 and 5.4). The vulnerability is triggered in index.php via the gallerypic page’s img_id parameter, allowing remote attackers to potentially execute arbitrary SQL commands. The available documents identify the af...
CVE-2008-6210
SQL injection vulnerability in index.php in dream4 Koobi 4.4 and 5.4 allows remote attackers to execute arbitrary SQL commands via the imgid parameter in the gallerypic page...
CVE-2008-2036
SQL injection vulnerability in index.php in dream4 Koobi Pro 6.25 allows remote attackers to execute arbitrary SQL commands via the pollid parameter in a poll action...
Sql injection
SQL injection vulnerability in index.php in dream4 Koobi Pro 6.25 allows remote attackers to execute arbitrary SQL commands via the pollid parameter in a poll action...
CVE-2008-2036
SQL injection vulnerability in index.php in dream4 Koobi Pro 6.25 allows remote attackers to execute arbitrary SQL commands via the pollid parameter in a poll action...
Dream4 Koobi CMS index.php area Parameter SQL Injection
The remote host is running the Dream4 Koobi CMS, a CMS written in PHP. The remote version of this software contains an input validation flaw leading to a SQL injection vulnerability. An attacker may exploit this flaw to execute arbitrary SQL commands against the remote database. %NASLMINLEVEL 703...
CVE-2005-1373
Multiple SQL injection vulnerabilities in index.php in Dream4 Koobi CMS 4.2.3 allow remote attackers to execute arbitrary SQL commands via the 1 q or 2 p parameters...
CVE-2005-0890
SQL injection vulnerability in Dream4 Koobi CMS 4.2.3 allows remote attackers to execute arbitrary SQL commands via the area parameter...
CVE-2005-1373
Multiple SQL injection vulnerabilities in index.php in Dream4 Koobi CMS 4.2.3 allow remote attackers to execute arbitrary SQL commands via the 1 q or 2 p parameters...
CVE-2005-1373
Dream4 Koobi CMS 4.2.3 contains SQL injection flaws in index.php exploitable via the q and p parameters, allowing remote arbitrary SQL execution. Root cause: input validation flaw leading to SQL injection; no remediation details provided in the connected documents.
CVE-2005-0889
Cross-site scripting XSS vulnerability in index.php for Dream4 Koobi CMS 4.2.3 allows remote attackers to inject arbitrary web script or HTML via the area parameter...
CVE-2005-0890
SQL injection vulnerability in Dream4 Koobi CMS 4.2.3 allows remote attackers to execute arbitrary SQL commands via the area parameter...
CVE-2005-0890
CVE-2005-0890 describes a SQL injection vulnerability in Dream4 Koobi CMS 4.2.3 that allows remote attackers to execute arbitrary SQL commands via the area parameter. The NVD entry lists a CVSS v2 base score of 7.5 (HIGH) with network access, low access complexity, and no authentication required,...