4 matches found
EUVD-2010-4816
Malware in sbrugna...
Cross site scripting
Cross-site scripting XSS vulnerability in login.php in Eclime 1.1.2b allows remote attackers to inject arbitrary web script or HTML via the reason parameter in a fail action...
Sql injection
Multiple SQL injection vulnerabilities in Eclime 1.1.2b allow remote attackers to execute arbitrary SQL commands via the 1 ref or 2 pollid parameter to index.php, or the 3 country parameter to createaccount.php...
CVE-2010-4851
Multiple SQL injection vulnerabilities in Eclime 1.1.2b allow remote attackers to execute arbitrary SQL commands via the 1 ref or 2 pollid parameter to index.php, or the 3 country parameter to createaccount.php...