14 matches found
EUVD-2009-2576
Malware in sbrugna...
EUVD-2008-2034
Malware in sbrugna...
CVE-2009-2581
Cross-site scripting XSS vulnerability in modifier.php in EditeurScripts EsNews 1.2 allows remote attackers to inject arbitrary web script or HTML via the msg parameter...
CVE-2008-6868
Cross-site scripting XSS vulnerability in default/login.php in EditeurScripts EsBaseAdmin 2.1 allows remote attackers to inject arbitrary web script or HTML via the msg parameter. NOTE: the EsContacts 1.0 issue is covered in CVE-2008-2037...
Cross site scripting
Cross-site scripting XSS vulnerability in modifier.php in EditeurScripts EsNews 1.2 allows remote attackers to inject arbitrary web script or HTML via the msg parameter...
CVE-2009-2581
The CVE-2009-2581 entry describes a Cross‑Site Scripting (XSS) vulnerability in EditeurScripts EsNews 1.2, specifically in modifier.php where the msg parameter can be exploited to inject arbitrary web script or HTML. The affected component is the modifier.php script within EsNews 1.2; the underly...
CVE-2008-6868
Cross-site scripting XSS vulnerability in default/login.php in EditeurScripts EsBaseAdmin 2.1 allows remote attackers to inject arbitrary web script or HTML via the msg parameter. NOTE: the EsContacts 1.0 issue is covered in CVE-2008-2037...
CVE-2009-2581
Cross-site scripting XSS vulnerability in modifier.php in EditeurScripts EsNews 1.2 allows remote attackers to inject arbitrary web script or HTML via the msg parameter...
CVE-2008-6868
CVE-2008-6868 is an XSS vulnerability affecting EditeurScripts products, notably EditeurScripts EsBaseAdmin 2.1 (default/login.php), where the msg parameter can inject arbitrary script/HTML. OpenVAS details indicate the issue stems from insufficient sanitization of user-supplied data across multi...
Multiple EditeurScripts Products 'msg' Parameter Cross Site Scripting Vulnerability
Multiple EditeurScripts products are prone to a cross-site scripting vulnerability because they fail to sufficiently sanitize user-supplied data. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective...
EsFaq 2.0 - 'idcat' SQL Injection
|| | | EsFaq Remote Sql Injection Exploit | | |---------------------SuB-ZeRo----------------------| | | Author: SuB-ZeRo | | Home : www.dz-security.com | | email: [email protected] | | | | | | | script :http://editeurscripts.com/ressources/scripts-php/dl.php?idscript=5 | | DorK :...
CVE-2008-2037
Multiple cross-site scripting XSS vulnerabilities in EditeurScripts EsContacts 1.0 allow remote authenticated users to inject arbitrary web script or HTML via the msg parameter to 1 login.php, 2 importer.php, 3 addgroupe.php, 4 contacts.php, 5 groupes.php, and 6 search.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in EditeurScripts EsContacts 1.0 allow remote authenticated users to inject arbitrary web script or HTML via the msg parameter to 1 login.php, 2 importer.php, 3 addgroupe.php, 4 contacts.php, 5 groupes.php, and 6 search.php...
CVE-2008-2037
CVE-2008-2037 describes multiple XSS vulnerabilities in EditeurScripts EsContacts 1.0, exploitable by remote authenticated users via the msg parameter in login.php, importer.php, add_groupe.php, contacts.php, groupes.php, and search.php. The linked evidence from connected sources confirms the aff...