6 matches found
EUVD-2006-1685
Malware in sbrugna...
CVE-2006-1684
Unspecified vulnerability in ecotwo Shopsystem 1.0-192 and earlier allows remote attackers to include arbitrary local files via 1 the lang parameter in news.php and 2 other unspecified vectors...
Code injection
Unspecified vulnerability in ecotwo Shopsystem 1.0-192 and earlier allows remote attackers to include arbitrary local files via 1 the lang parameter in news.php and 2 other unspecified vectors...
CVE-2006-1684
Unspecified vulnerability in ecotwo Shopsystem 1.0-192 and earlier allows remote attackers to include arbitrary local files via 1 the lang parameter in news.php and 2 other unspecified vectors...
CVE-2006-1684
CVE-2006-1684 affects ecotwo Shopsystem 1.0-192 and earlier. The vulnerability allows remote attackers to include arbitrary local files via the lang parameter in news.php and other unspecified vectors, enabling local file inclusion. The NVD entry lists a (Network) attack vector with low complexit...
ecotwo Shopsystem vuln.
ecotwo Shopsystem vuln. Vuln. discovered by : r0t Date: 9 april 2006 vendor:http://www.i-webshop.de/6-0-shopsysteme.html affected versions: 1.0-192 and previous orginal advisory: http://pridels.blogspot.com/2006/04/ecotwo-shopsystem-vuln.html Vuln. description: Input passed to the "lang" paramete...