7 matches found
EUVD-2008-2914
Malware in sbrugna...
Sql injection
SQL injection vulnerability in index.php in EZTechhelp EZCMS 1.2 and earlier allows remote attackers to execute arbitrary SQL commands via the page parameter...
Authentication flaw
admin/filemanager/ aka the File Manager in EZTechhelp EZCMS 1.2 and earlier does not require authentication, which allows remote attackers to create, modify, read, and delete files...
CVE-2008-2921
SQL injection vulnerability in index.php in EZTechhelp EZCMS 1.2 and earlier allows remote attackers to execute arbitrary SQL commands via the page parameter...
CVE-2008-2921
SQL injection vulnerability in index.php in EZTechhelp EZCMS 1.2 and earlier allows remote attackers to execute arbitrary SQL commands via the page parameter...
CVE-2008-2920
The CVE-2008-2920 entry concerns EZTechhelp EZCMS 1.2 and earlier where admin/filemanager/ (the File Manager) does not require authentication. This root cause enables remote attackers to create, modify, read, and delete files. Public references confirm the vulnerability and its exposure, with the...
CVE-2008-2920
admin/filemanager/ aka the File Manager in EZTechhelp EZCMS 1.2 and earlier does not require authentication, which allows remote attackers to create, modify, read, and delete files...