28 matches found
EUVD-2008-5625
Malware in sbrugna...
EUVD-2008-1352
Malware in sbrugna...
EUVD-2008-1351
Malware in sbrugna...
easycalendar <= 4.0tr Multiple Vulnerabilities
No description provided by source. --==+=================== Spanish Hackers Team www.spanish-hackers.com =================+==-- --==+ EasyCalendar = 4.0tr - Multiple Remote Vulnerabilities +==-- --==+====================================================================================+==-- + JosS ...
CVE-2008-5654
SQL injection vulnerability in the loginADP function in ajaxp.php in MyioSoft EasyCalendar 4.0 allows remote attackers to execute arbitrary SQL commands via the rsargs parameter, as reachable through the username parameter, a different vector than CVE-2008-1344. NOTE: some of these details are...
Sql injection
SQL injection vulnerability in the loginADP function in ajaxp.php in MyioSoft EasyCalendar 4.0 allows remote attackers to execute arbitrary SQL commands via the rsargs parameter, as reachable through the username parameter, a different vector than CVE-2008-1344. NOTE: some of these details are...
CVE-2008-5654
SQL injection vulnerability in the loginADP function in ajaxp.php in MyioSoft EasyCalendar 4.0 allows remote attackers to execute arbitrary SQL commands via the rsargs parameter, as reachable through the username parameter, a different vector than CVE-2008-1344. NOTE: some of these details are...
CVE-2008-5654
Summary (CVE-2008-5654): SQL injection vulnerability in the loginADP function of ajaxp.php in MyioSoft EasyCalendar 4.0 (and earlier per related CVE-2008-1344) allows remote attackers to execute arbitrary SQL commands via the rsargs parameter, reachable through the username parameter. This is a d...
MyioSoft EasyCalendar (Auth Bypass) Remote SQL Injection Vulnerability
No description provided by source. MyioSoft EasyCalendar Remote Auth Bypass Vulnerability ---------------------------------------------------------- Discovered By: ZoRLu Date: 07.11.2008 Home: www.z0rlu.blogspot.com contact: [email protected] N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA :...
easycal-sql.txt
MyioSoft EasyCalendar Remote Auth Bypass Vulnerability ---------------------------------------------------------- Discovered By: ZoRLu Date: 07.11.2008 Home: www.z0rlu.blogspot.com contact: [email protected] N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA :...
MyioSoft EasyCalendar - Authentication Bypass
MyioSoft EasyCalendar Remote Auth Bypass Vulnerability ---------------------------------------------------------- Discovered By: ZoRLu Date: 07.11.2008 Home: www.z0rlu.blogspot.com contact: [email protected] N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA :...
MyioSoft EasyCalendar (Auth Bypass) Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications ====================================================================== MyioSoft EasyCalendar Auth Bypass Remote SQL Injection Vulnerability ====================================================================== MyioSoft EasyCalendar Remote...
MyioSoft EasyCalendar - Authentication Bypass
MyioSoft EasyCalendar - Authentication Bypass MyioSoft EasyCalendar Remote Auth Bypass Vulnerability ---------------------------------------------------------- Discovered By: ZoRLu Date: 07.11.2008 Home: www.z0rlu.blogspot.com contact: [email protected] N0T: YALNIZLIK, YiTiRDi ANLAMINI...
CVE-2008-3348
Cross-site scripting XSS vulnerability in staticpages/easycalendar/index.php in MyioSoft EasyDynamicPages 3.0 trial edition tr allows remote attackers to inject arbitrary web script or HTML via the year parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in plugins/calendar/calendarbackend.php in MyioSoft EasyCalendar 4.0tr and earlier allows remote attackers to inject arbitrary web script or HTML via the day parameter in a dayview action...
CVE-2008-1344
Multiple SQL injection vulnerabilities in MyioSoft EasyCalendar 4.0tr and earlier allow remote attackers to execute arbitrary SQL commands via the 1 year parameter in a dayview action to plugins/calendar/calendarbackend.php and the 2 page parameter to ajaxpbackend.php...
Sql injection
Multiple SQL injection vulnerabilities in MyioSoft EasyCalendar 4.0tr and earlier allow remote attackers to execute arbitrary SQL commands via the 1 year parameter in a dayview action to plugins/calendar/calendarbackend.php and the 2 page parameter to ajaxpbackend.php...
CVE-2008-1345
Cross-site scripting XSS vulnerability in plugins/calendar/calendarbackend.php in MyioSoft EasyCalendar 4.0tr and earlier allows remote attackers to inject arbitrary web script or HTML via the day parameter in a dayview action...
CVE-2008-1344
Multiple SQL injection vulnerabilities in MyioSoft EasyCalendar 4.0tr and earlier allow remote attackers to execute arbitrary SQL commands via the 1 year parameter in a dayview action to plugins/calendar/calendarbackend.php and the 2 page parameter to ajaxpbackend.php...
CVE-2008-1344
MyioSoft EasyCalendar 4.0tr and earlier are affected by SQL injection in two vectors: (1) year parameter in dayview action to plugins/calendar/calendar_backend.php and (2) page parameter to ajaxp_backend.php. Remote attackers can execute arbitrary SQL commands. Affected software/versions are not ...