EUVD-2008-1479

Malware in sbrugna...

eForum 0.4 - 'busca.php' Multiple Cross Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/28293/info eForum is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities may allow an attacker to perform...

Arbitary File Upload Vulnerability in Elxis CMS component eForum v1.1

========================================================================== Elxis CMS component eForum v1.1 - Arbitary File Upload Vulnerability ========================================================================== Software: eForum v1.1 Elxis CMS component Vendor: http://www.isopensource.com/...

Elxis CMS eForum 1.1 File Upload

========================================================================== Elxis CMS component eForum v1.1 - Arbitary File Upload Vulnerability ========================================================================== Software: eForum v1.1 Elxis CMS component Vendor: http://www.isopensource.com/...

eForum 1.1 - 'eforum.php' Arbitrary File Upload

source: https://www.securityfocus.com/bid/47309/info eForum is prone to an arbitrary-file-upload vulnerability because the application fails to adequately sanitize user-supplied input. An attacker can exploit this issue to upload arbitrary code and run it in the context of the webserver process...

eForum 1.1 - eforum.php Arbitrary File Upload

eForum 1.1 - eforum.php Arbitrary File Upload source: https://www.securityfocus.com/bid/47309/info eForum is prone to an arbitrary-file-upload vulnerability because the application fails to adequately sanitize user-supplied input. An attacker can exploit this issue to upload arbitrary code and ru...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in busca.php in eForum 0.4 allow remote attackers to inject arbitrary web script or HTML via the 1 busca and 2 link parameters...

CVE-2008-1477

Multiple cross-site scripting XSS vulnerabilities in busca.php in eForum 0.4 allow remote attackers to inject arbitrary web script or HTML via the 1 busca and 2 link parameters...

CVE-2008-1477

Multiple cross-site scripting XSS vulnerabilities in busca.php in eForum 0.4 allow remote attackers to inject arbitrary web script or HTML via the 1 busca and 2 link parameters...

CVE-2008-1477

CVE-2008-1477 concerns multiple cross-site scripting (XSS) vulnerabilities in busca.php of eForum 0.4. The issue allows remote attackers to inject arbitrary web script or HTML via the (1) busca and (2) link parameters. The NVD entry lists the impact as confidentiality: NONE, integrity: PARTIAL, a...

eforum-xss.txt

eForum v0.4 - NON-PERSISTENT XSS by Omni 1 Infos --------- Date : 2008-03-05 Product : eForum Version : v 0.4 Vendor : http://www.phpbrasil.com/scripts/script.php/id/169 Vendor Status : 2008-03-18 Not Informed! 2008-03-18 Published! Description : eForum is an easy-to-install discussion board that...

eForum 0.4 - busca.php Multiple Cross-Site Scripting Vulnerabilities

eForum 0.4 - busca.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/28293/info eForum is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities m...

eForum 0.4 XSS

eForum v0.4 - NON-PERSISTENT XSS by Omni 1 Infos --------- Date : 2008-03-05 Product : eForum Version : v 0.4 Vendor : http://www.phpbrasil.com/scripts/script.php/id/169 Vendor Status : 2008-03-18 Not Informed! 2008-03-18 Published! Description : eForum is an easy-to-install discussion board that...

eForum 0.4 - 'busca.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/28293/info eForum is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities may allow an attacker to perform cross-site scripting attacks on...