CVE-2018-25411 MGB OpenSource Guestbook 0.7.0.2 SQL Injection via email.php

MGB OpenSource Guestbook 0.7.0.2 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'id' parameter. Attackers can send GET requests to email.php with crafted SQL payloads in the 'id' parameter to...

CVE-2018-25411

MGB OpenSource Guestbook 0.7.0.2 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'id' parameter. Attackers can send GET requests to email.php with crafted SQL payloads in the 'id' parameter to...

CVE-2025-59025

Malicious e-mail content can be used to execute script code. Unintended actions can be executed in the context of the users account, including exfiltration of sensitive information. Sanitization has been updated to avoid such bypasses. No publicly available exploits are known...

EUVD-2008-7001

Malware in sbrugna...

EUVD-2008-5721

Malware in sbrugna...

CVE-2024-25501

An issue WinMail v.7.1 and v.5.1 and before allows a remote attacker to execute arbitrary code via a crafted script to the email parameter...

GHSA-HWCH-749C-RV63 Potential Command Injection in hubot-scripts

Versions 2.4.3 and earlier of hubot-scripts are vulnerable to a command injection vulnerablity in the hubot-scripts/package/src/scripts/email.coffee module. Mitigating Factors The email script is not enabled by default, it has to be manually added to hubot's list of loaded scripts. Recommendation...

Potential Command Injection in hubot-scripts

Versions 2.4.3 and earlier of hubot-scripts are vulnerable to a command injection vulnerablity in the hubot-scripts/package/src/scripts/email.coffee module. Mitigating Factors The email script is not enabled by default, it has to be manually added to hubot's list of loaded scripts. Recommendation...

Potential Command Injection

Overview Versions 2.4.3 and earlier of hubot-scripts are vulnerable to a command injection vulnerablity in the hubot-scripts/package/src/scripts/email.coffee module. Mitigating Factors The email script is not enabled by default, it has to be manually added to hubot's list of loaded scripts...

fresh email script 1.0 - Multiple Vulnerabilities

No description provided by source. 1. +-----------------+-----------------+-----------------+ 2. +-----------------+Fresh Email Script+----------------+ 3. +-----------------versions: 1.0 to 1.11 - all 4. +-----------------exploits: file inclusion & cookie manipulation 5. +-----------------founde...

phpBB <= 2.0.18 Remote Bruteforce/Dictionary Attack Tool (updated)

No description provided by source. !/usr/bin/perl Title: PhpBB = 2.0.18 Remote Bruteforce/Dictionary Attack Tool Type: Bruteforce / Dictionary attack New demo: http://rapidshare.de/files/13694254/phpbbbtr.avi.html 1.06 mb Php Email Script data: ? mail$destinataire, $objet, $contenu, From:...

I-net Multi User Email Script SQLi Vulnerability

I-net Multi User Email Script SQLi Vulnerability. Webapps exploit for linux platform Name : I-net Multi User Email Script SQLi Vulnerability Date : june, 27 2010 Critical Level : HIGH Vendor Url : http://www.i-netsolution.com/ Google Dork: inurl:/jobsearchengine/ Author : Sid3^effects aKa HaRi...

I-net Multi User Email Script SQLi Vulnerability

I-net Multi User Email Script SQLi Vulnerability. Webapps exploit for linux platform 1 1 0 I'm Sid3^effects member from Inj3ct0r Team 1 1 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1 Name : I-net Multi User Email Script SQLi Vulnerability Date : june, 27 2010 Critica...

I-Net Multi User Email Script SQL Injection

================================================== I-net Multi User Email Script SQLi Vulnerability ================================================= 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' ...

I-net Multi User Email Script - SQL Injection

I-net Multi User Email Script - SQL Injection Name : I-net Multi User Email Script SQLi Vulnerability Date : june, 27 2010 Critical Level : HIGH Vendor Url : http://www.i-netsolution.com/ Google Dork: inurl:/jobsearchengine/ Author : Sid3^effects aKa HaRi special thanks to : r0073r...

i-net Multi User Email Script SQL Injection Vulnerability

Exploit for php platform in category web applications ========================================================= i-net Multi User Email Script SQL Injection Vulnerability =========================================================...

Cross site scripting

Cross-site scripting XSS vulnerability in register.php in FreshScripts Fresh Email Script 1.0 through 1.11 allows remote attackers to inject arbitrary web script or HTML via the Email parameter. NOTE: this can be leveraged to modify cookies and conduct session fixation attacks...

CVE-2008-7043

Cross-site scripting XSS vulnerability in register.php in FreshScripts Fresh Email Script 1.0 through 1.11 allows remote attackers to inject arbitrary web script or HTML via the Email parameter. NOTE: this can be leveraged to modify cookies and conduct session fixation attacks...

CVE-2008-7043

CVE-2008-7043 affects FreshScripts Fresh Email Script 1.0–1.11. The vulnerability is in the register.php flow where the Email parameter can be exploited to inject arbitrary web script or HTML (XSS). The described impact includes potential cookie modification and session fixation attacks. Exploita...

CVE-2008-7042

The CVE-2008-7042 entry refers to a PHP remote file inclusion vulnerability in FreshScripts Fresh Email Script, versions 1.0 through 1.11. The flaw allows remote attackers to execute arbitrary PHP code by supplying a URL in the tmp_sid parameter of url.php. This indicates an RFI in a user-supplie...