47 matches found
EUVD-2006-7166
Malware in sbrugna...
EUVD-2006-5277
Malware in sbrugna...
EUVD-2006-7165
Malware in sbrugna...
EUVD-2005-1877
Malware in sbrugna...
CVE-2006-7184
Multiple PHP remote file inclusion vulnerabilities in Exhibit Engine EE 1.22, and possibly earlier, allow remote attackers to execute arbitrary PHP code via a URL in the toroot parameter to 1 fetchsettings.php or 2 fstyles.php. NOTE: the provenance of this information is unknown; the details are...
WordPress Exhibit to WP Gallery plugin <= 0.002 - Reflected XSS vulnerability
Reflected XSS vulnerability discovered by Bob Matyas in WordPress Plugin Exhibit to WP Gallery versions = 0.002...
CVE-2024-12096
The Exhibit to WP Gallery WordPress plugin through 0.0.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2024-12096 Exhibit to WP Gallery <= 0.0.2 - Reflected XSS
The Exhibit to WP Gallery WordPress plugin through 0.0.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
PT-2024-17436 · WordPress · Exhibit To Wp Gallery
Name of the Vulnerable Software and Affected Versions: Exhibit to WP Gallery WordPress plugin version 0.0.2 Description: The issue is related to a Reflected Cross-Site Scripting problem, where a parameter is not properly sanitized and escaped before being outputted back in the page. This could be...
WordPress plugin Exhibit to WP Gallery 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
Friday Squid Blogging: Te Papa Colossal Squid Exhibition Is Being Renovated
The New Zealand home of the colossal squid exhibit is behind renovated. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Read my blog posting guidelines here...
Call For Customer Presentations at RSA Conference 2018!
Tell your security story to your peers at RSA Conference 2018 San Francisco! Qualys is looking for customers excited to share their security and DevSecOps successes, best practices and case studies leveraging the use of the Qualys Cloud Platform. Take the stage in the Qualys booth to share your...
Apple Patents Technology to remotely disable your iPhone Camera at Concerts
Here's something you'll not like at all: Apple has been awarded a patent for technology that would prevent you from snapping pictures and shooting videos with your iPhone or iPad at places or events, like concerts or museums, where it might be prohibited or inappropriate. The patent, granted on...
Exhibit Engine <= 1.22 (styles.php) Remote File Include Vulnerability
No description provided by source. $$$$$$$$$$$$$$$ DEVIL TEAM THE BEST POLISH TEAM $$$$$$$$$$$$$$$ $$ $$ Exhibit Engine = 1.22 toroot Remote File Include Vulnerability $$ Script site: http://photography-on-the.net/ee/ $$ $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ $$ $$ Find b...
Exhibit Engine 1.22 fetchsettings.php toroot Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/20793/info Exhibit Engine Software is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows an attacker to execute...
Exhibit Engine <= 1.5 RC 4 (photo_comment.php) File Include Exploit
No description provided by source. ' ' EXPLOIT coded by Kacper in Visual Basic ;- ' '::::::::: :::::::::: ::: ::: ::::::::::: ::: ':+: :+: :+: :+: :+: :+: :+: '+:+ +:+ +:+ +:+ +:+ +:+ +:+ '++ +:+ +++:++ ++ +:+ ++ ++ '++ ++ ++ ++ ++ ++ ++ '+ + + +++ + + ' '::::::::::: :::::::::: ::: :::: :::: ' :+...
Exhibit Engine 1.22 fstyles.php toroot Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/20793/info Exhibit Engine Software is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows an attacker to execute...
Exhibit Engine toroot Parameter Remote File Include Vulnerability
The remote web server contains a PHP script that is affected by a remote file include issue. Description: The remote web server is running Exhibit Engine, a PHP based photo gallery management system. The version of Exhibit Engine installed on the remote host fails to sanitize input to the 'toroot...
Exhibit Engine toroot Parameter Remote File Include Vulnerability
The remote web server running Exhibit Engine, a PHP based photo gallery management system which is affected by a remote file include issue. SPDX-FileCopyrightText: 2008 Justin Seitz Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...
CVE-2006-7184
Multiple PHP remote file inclusion vulnerabilities in Exhibit Engine EE 1.22, and possibly earlier, allow remote attackers to execute arbitrary PHP code via a URL in the toroot parameter to 1 fetchsettings.php or 2 fstyles.php. NOTE: the provenance of this information is unknown; the details are...