21 matches found
EUVD-2008-6884
Malware in sbrugna...
EUVD-2006-2578
Malware in sbrugna...
EUVD-2010-4472
Malware in sbrugna...
CVE-2010-4504
Multiple cross-site scripting XSS vulnerabilities in eSyndiCat Directory 2.3 allow remote attackers to inject arbitrary web script or HTML via the title parameter to 1 suggest-category.php and 2 suggest-listing.php...
eSyndiCat Directory Software Cross Site Scripting
eSyndiCat Directory Software preview= version 2.2 and 2.3 - Cross-Site Scripting XSS & Redirect http://www.esyndicat.com 30 - 01 - 2011 Avram Marius d3v1l http://twitter.com/securityshell - http://security-sh3ll.blogspot.com ------------------------------------------------------------------------...
eSyndiCat Directory Software 2.22.3 - preview Cross-Site Scripting
eSyndiCat Directory Software 2.22.3 - preview Cross-Site Scripting source: https://www.securityfocus.com/bid/46082/info eSyndiCat Directory Software is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to...
eSyndiCat Directory Software 2.2/2.3 - 'preview' Cross-Site Scripting
source: https://www.securityfocus.com/bid/46082/info eSyndiCat Directory Software is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in eSyndiCat Directory 2.3 allow remote attackers to inject arbitrary web script or HTML via the title parameter to 1 suggest-category.php and 2 suggest-listing.php...
CVE-2010-4504
Multiple cross-site scripting XSS vulnerabilities in eSyndiCat Directory 2.3 allow remote attackers to inject arbitrary web script or HTML via the title parameter to 1 suggest-category.php and 2 suggest-listing.php...
CVE-2010-4504
CVE-2010-4504 affects eSyndiCat Directory 2.3. The vulnerability is a Cross-Site Scripting (XSS) flaw exploitable via the title parameter in two scripts, suggest-category.php and suggest-listing.php. Remote attackers could inject arbitrary web script or HTML as described in the CVE. The connected...
eSyndiCat Directory Software 2.3 Cross Site Scripting
------------------------------------------------------------------------- eSyndiCat Directory Software 2.3 - Cross-Site Scripting XSS http://www.esyndicat.com/ 25 - 11 - 2010 Avram Marius d3v1l http://twitter.com/securityshell - http://security-sh3ll.blogspot.com...
CVE-2008-6924
Multiple cross-site scripting XSS vulnerabilities in register.php in eSyndiCat Directory 2.2 allow remote attackers to inject arbitrary web script or HTML via the 1 username, 2 email, 3 password, 4 password2, 5 securitycode, and 6 register parameters...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in register.php in eSyndiCat Directory 2.2 allow remote attackers to inject arbitrary web script or HTML via the 1 username, 2 email, 3 password, 4 password2, 5 securitycode, and 6 register parameters...
CVE-2008-6924
CVE-2008-6924 affects eSyndiCat Directory 2.2, with XSS in register.php allowing remote injection of scripts via six parameters (username, email, password, password2, security_code, register). The initial data lists a MEDIUM base score (CVSS v2: 4.3) and mentions no exploitation details; no remed...
esyndicat-xss.txt
eSyndiCat Directory Software Pro 2.2 XSS - Cross-Site Scripting Vulnerability - Vendor : www.esyndicat.com - Platform : PHP - Discovered : by Fugitif My vulnerability is on "register.php" and works this way : http://www.site.com/register.php where...
eSyndiCat Directory Software Multiple SQL Injection Vulnerabilities
Exploit for unknown platform in category web applications =================================================================== eSyndiCat Directory Software Multiple SQL Injection Vulnerabilities =================================================================== eSyndiCat: Multiple SQL Injection's...
eSyndiCat Directory Software - Multiple SQL Injections
eSyndiCat: Multiple SQL Injection's http://www.esyndicat.net/ ---------------------------------------------------------- Exploit coded and founded by d3v1l Date: 14.07.2007 [email protected] ----------------------------------------------------------- Greetz tO:- Security-Shell Members...
eSyndiCat Directory Software - Multiple SQL Injections
eSyndiCat Directory Software - Multiple SQL Injections eSyndiCat: Multiple SQL Injection's http://www.esyndicat.net/ ---------------------------------------------------------- Exploit coded and founded by d3v1l Date: 14.07.2007 [email protected]...
[SA21979] eSyndiCat Directory Software "what" Cross-Site Scripting
TITLE: eSyndiCat Directory Software "what" Cross-Site Scripting SECUNIA ADVISORY ID: SA21979 VERIFY ADVISORY: http://secunia.com/advisories/21979/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: eSyndiCat Directory Software 1.x http://secunia.com/product/10166/...
Code injection
admin/cron.php in eSyndicat Directory 1.2, when registerglobals is enabled and magicquotesgpc is disabled, allows remote attackers to include arbitrary files and possibly execute arbitrary PHP code via a null-terminated value in the pathtoconfig parameter...