EUVD-2007-0756

Malware in sbrugna...

EUVD-2006-1381

Malware in sbrugna...

EasyMoblog 0.5 Img.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17199/info EasyMoblog is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary...

EasyMoblog 0.5.1 - Multiple Input Validation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/22369/info EasyMoblog is prone to multiple input-validation vulnerabilities, including SQL-injection issues and a cross-site scripting issue, because the application fails to sufficiently sanitize user-supplied input...

CVE-2007-0759

Multiple SQL injection vulnerabilities in EasyMoblog 0.5.1 allow remote attackers to execute arbitrary SQL commands via the 1 i or 2 postid parameter to addcomment.php, which triggers an injection in libraries.inc.php; or 3 the i parameter to listcomments.php, which triggers an injection in...

Sql injection

Multiple SQL injection vulnerabilities in EasyMoblog 0.5.1 allow remote attackers to execute arbitrary SQL commands via the 1 i or 2 postid parameter to addcomment.php, which triggers an injection in libraries.inc.php; or 3 the i parameter to listcomments.php, which triggers an injection in...

CVE-2007-0759

Multiple SQL injection vulnerabilities in EasyMoblog 0.5.1 allow remote attackers to execute arbitrary SQL commands via the 1 i or 2 postid parameter to addcomment.php, which triggers an injection in libraries.inc.php; or 3 the i parameter to listcomments.php, which triggers an injection in...

CVE-2007-0759

CVE-2007-0759 affects EasyMoblog 0.5.1 with multiple SQL injection flaws. The vulnerabilities occur in add_comment.php (parameters i and post_id) and list_comments.php (parameter i), triggering injections in libraries.inc.php. This allows remote attackers to execute arbitrary SQL commands. The re...

XSS_Vulnerability_EasymoBlog.txt

·= Security Advisory =· Issue: Cross Site Scripting XSS Vulnerability in "img.php" by Umberto Caldera. Discovered Date: 30/01/2007 Author: Tal Argoni talargoni at gmail d0t com Product Vendor: http://sourceforge.net/project/showfiles.php?groupid=88633 Ver: easymoblog-0.5.1 Details: EasyMoblog is...

Sql_Vulnerability_EasymoBlog-2.txt

·= Security Advisory =· Issue: Sql injection Vulnerability in EasyMoblog by Umberto Caldera. Discovered Date: 30/01/07 Author: Tal Argoni, LegendaryZion. talargoni at gmail.com Product Vendor: http://sourceforge.net/project/showfiles.php?groupid=88633 Ver: easymoblog-0.5.1 Details: EasyMoblog is...

Sql_Vulnerability_EasymoBlog.txt

·= Security Advisory =· Issue: Sql injection Vulnerability in EasyMoblog by Umberto Caldera. Discovered Date: 30/01/07 Author: Tal Argoni, LegendaryZion. talargoni at gmail.com Product Vendor: http://sourceforge.net/project/showfiles.php?groupid=88633 Ver: easymoblog-0.5.1 Details: EasyMoblog is...

[Full-disclosure] Remote Sql Injection in EasyMoblog 0.5.1 # 2

·= Security Advisory =· Issue: Sql injection Vulnerability in EasyMoblog by Umberto Caldera. Discovered Date: 30/01/07 Author: Tal Argoni, LegendaryZion. talargoni at gmail.com Product Vendor: http://sourceforge.net/project/showfiles.php?groupid=88633 Ver: easymoblog-0.5.1 Details: EasyMoblog is...

[Full-disclosure] Remote Sql Injection in EasyMoblog 0.5.1

·= Security Advisory =· Issue: Sql injection Vulnerability in EasyMoblog by Umberto Caldera. Discovered Date: 30/01/07 Author: Tal Argoni, LegendaryZion. talargoni at gmail.com Product Vendor: http://sourceforge.net/project/showfiles.php?groupid=88633 Ver: easymoblog-0.5.1 Details: EasyMoblog is...

[Full-disclosure] Xss Vulnerability in EasyMoblog 0.5.1

·= Security Advisory =· Issue: Cross Site Scripting XSS Vulnerability in "img.php" by Umberto Caldera. Discovered Date: 30/01/2007 Author: Tal Argoni talargoni at gmail d0t com Product Vendor: http://sourceforge.net/project/showfiles.php?groupid=88633 Ver: easymoblog-0.5.1 Details: EasyMoblog is...

EasyMoblog 0.5.1 - Multiple Input Validation Vulnerabilities

EasyMoblog 0.5.1 - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/22369/info EasyMoblog is prone to multiple input-validation vulnerabilities, including SQL-injection issues and a cross-site scripting issue, because the application fails to sufficiently saniti...

EasyMoblog 0.5.1 - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/22369/info EasyMoblog is prone to multiple input-validation vulnerabilities, including SQL-injection issues and a cross-site scripting issue, because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues could allow a...

CVE-2006-1377

Cross-site scripting XSS vulnerability in img.php in 1 EasyMoblog 0.5.1 and 2 CoMoblog 1.1 allows remote attackers to inject arbitrary web script or HTML via the i parameter...

CVE-2006-1377

Cross-site scripting XSS vulnerability in img.php in 1 EasyMoblog 0.5.1 and 2 CoMoblog 1.1 allows remote attackers to inject arbitrary web script or HTML via the i parameter...

CVE-2006-1377

The CVE-2006-1377 entry describes a Cross-site scripting (XSS) vulnerability in img.php for the applications EasyMoblog 0.5.1 and CoMoblog 1.1 , where an attacker can inject arbitrary web script or HTML via the i parameter. The vulnerability is triggered remotely and the impact stated is that the...

[SA19370] EasyMoblog "img.php" Cross-Site Scripting Vulnerability

TITLE: EasyMoblog "img.php" Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA19370 VERIFY ADVISORY: http://secunia.com/advisories/19370/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: EasyMoblog 0.x http://secunia.com/product/8909/ DESCRIPTION: FarhadKe...