EUVD-2021-26649

Malware in sbrugna...

DzzOffice Cross-Site Scripting Vulnerability

Dzzoffice is a set of open source office suite for enterprises, teams to build their own similar to the "Google Apps Suite", "Microsoft Office365" enterprise collaboration platform. A cross-site scripting vulnerability exists in attach/ajax.php in DzzOffice 2.02.1 and earlier versions. The...

DzzOffice 跨站脚本漏洞

Dzzoffice is a set of open source office suite for enterprises, teams to build their own similar to the "Google Apps Suite", "Microsoft Office365" enterprise collaboration platform. A cross-site scripting vulnerability exists in attach/ajax.php in DzzOffice 2.02.1 and earlier versions. The...

CVE-2007-2963

Multiple cross-site scripting XSS vulnerabilities in Invision Power Board IPB or IP.Board 2.2.2, and possibly earlier, allows remote attackers to inject arbitrary web script or HTML via 1 modulebbcodeloader.php, 2 modulediv.php, 3 moduleemail.php, 4 moduleimage.php, 5 modulelink.php, or 6 the...

Link Exchange Lite SQL 注入漏洞

Link Exchange Lite是一款基于ASP的WEB应用程序。 Link Exchange Lite不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞进行sql注入攻击，获得敏感信息。 问题是由于'categories.asp'脚本对用户提交的WEB参数缺少过滤，提交恶意sql查询作为参数数据，可更改原来的sql逻辑，获得敏感信息。 Softacid Link Exchange Lite 1.0 http://softacid.net/ http://www.example.com/categories.asp?catID=SQL Injection...

CVE-2006-6080

Multiple SQL injection vulnerabilities in categories.asp in gNews Publisher allow remote attackers to execute arbitrary SQL commands via the 1 catID or 2 editorID parameter...

CVE-2006-6080

Multiple SQL injection vulnerabilities in categories.asp in gNews Publisher allow remote attackers to execute arbitrary SQL commands via the 1 catID or 2 editorID parameter...