EUVD-2008-2038

Malware in sbrugna...

MGASA-2014-0221 Updated egroupware packages fix a cross site request forgery

Updated egroupware packages fix security vulnerabilities: eGroupWare before 1.8.007 allows logged in users with administrative priviledges to remotely execute arbitrary commands on the server. It is also vulnerable to a cross site request forgery vulnerability that allows creating new...

eGroupWare 1.0 - ttsindex.php?filter SQL Injection

eGroupWare 1.0 - ttsindex.php?filter SQL Injection source: https://www.securityfocus.com/bid/13212/info eGroupWare is prone to multiple input validation vulnerabilities. A fixed version is available. The issues arise due to a failure of the application to properly validate user-supplied input...

eGroupWare 1.0 - sitemgr-siteindex.php?category_id Cross-Site Scripting

eGroupWare 1.0 - sitemgr-siteindex.php?categoryid Cross-Site Scripting source: https://www.securityfocus.com/bid/13212/info eGroupWare is prone to multiple input validation vulnerabilities. A fixed version is available. The issues arise due to a failure of the application to properly validate...

eGroupWare 1.0 - '/sitemgr-site/index.php?category_id' Cross-Site Scripting

source: https://www.securityfocus.com/bid/13212/info eGroupWare is prone to multiple input validation vulnerabilities. A fixed version is available. The issues arise due to a failure of the application to properly validate user-supplied input. These issues result in cross-site scripting and SQL...

eGroupWare 1.0 - '/tts/index.php?filter' SQL Injection

source: https://www.securityfocus.com/bid/13212/info eGroupWare is prone to multiple input validation vulnerabilities. A fixed version is available. The issues arise due to a failure of the application to properly validate user-supplied input. These issues result in cross-site scripting and SQL...

CVE-2004-1467

Multiple cross-site scripting XSS vulnerabilities in eGroupWare 1.0.00.003 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 date or search text field in the calendar module, 2 Field parameter, Filter parameter, QField parameter, Start parameter or Search field in th...

EGroupWare Multiple Vulnerabilities (SQLi, ID)

The remote host is running eGroupWare, a web-based groupware solution. It is reported that versions 1.0.0.006 and older are prone to multiple SQL injection and cross-site scripting flaws. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; i...

GLSA-200409-06 : eGroupWare: Multiple XSS vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200409-06 eGroupWare: Multiple XSS vulnerabilities Joxean Koret recently discovered multiple cross site scripting vulnerabilities in various modules for the eGroupWare suite. This includes the calendar, address book, messenger and...

Multiple Cross Site Scripting Vulnerabilities in eGroupWare

--------------------------------------------------------------------------- Multiple Cross Site Scripting Vulnerabilities in eGroupWare --------------------------------------------------------------------------- Author: Joxean Koret Date: 2004 Location: Basque Country...

eGroupWare 1.0 Calendar Module - date Cross-Site Scripting

eGroupWare 1.0 Calendar Module - date Cross-Site Scripting source: https://www.securityfocus.com/bid/11013/info It is reported that eGroupWare is susceptible to multiple cross-site scripting and HTML injection vulnerabilities. The cross-site scripting issues present themselves in the various...

eGroupWare < 1.0.0.004 Multiple XSS

Binary data 2132.prm...