36 matches found
EUVD-2007-0761
Malware in sbrugna...
EUVD-2009-4402
Malware in sbrugna...
EUVD-2007-0760
Malware in sbrugna...
F3Site 2009 mod/new.php GLOBALS[nlang] Parameter Traversal Local File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/37408/info F3Site is prone to multiple local file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the...
F3Site <= 2.1 - Remote Code Execution Exploit
No description provided by source. ? // //Kacper & str0ke Settings $exploitname = F3Site = 2.1 Remote Code Execution Exploit; $scriptname = F3Site 2.1; $scriptsite = http://dhost.info/compmaster/; $dork = 'Powered by F3Site'; //to work exploit you need admin session, and cookies prefix // print '...
F3Site 2011 alfa 1 Multiple Vulnerabilities (xss, csrf)
No description provided by source. Vulnerability ID: HTB22757 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinf3site.html Product: F3Site Vendor: COMPMaster http://dhost.info/compmaster/ Vulnerable Version: 2011 alfa 1 and probably prior versions Vendor Notification: 21 December 2010...
F3Site 2009 mod/poll.php GLOBALS[nlang] Parameter Traversal Local File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/37408/info F3Site is prone to multiple local file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and the...
XSS vulnerability in F3Site
Vulnerability ID: HTB22756 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinf3site1.html Product: F3Site Vendor: COMPMaster http://dhost.info/compmaster/ Vulnerable Version: 2011 alfa 1 and probably prior versions Vendor Notification: 21 December 2010 Vulnerability Type: Stored XSS...
XSS vulnerability in F3Site
Vulnerability ID: HTB22758 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinf3site2.html Product: F3Site Vendor: COMPMaster http://dhost.info/compmaster/ Vulnerable Version: 2011 alfa 1 and probably prior versions Vendor Notification: 21 December 2010 Vulnerability Type: Stored XSS...
F3Site 2011 alfa 1 XSS / CSRF Vulnerabilities
Exploit for php platform in category web applications Product: F3Site Vendor: COMPMaster http://dhost.info/compmaster/ Vulnerable Version: 2011 alfa 1 and probably prior versions Vendor Notification: 21 December 2010 Vulnerability Type: CSRF Cross-Site Request Forgery Status: Not Fixed, Vendor...
XSS vulnerability in F3Site
Vulnerability ID: HTB22758 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinf3site2.html Product: F3Site Vendor: COMPMaster http://dhost.info/compmaster/ Vulnerable Version: 2011 alfa 1 and probably prior versions Vendor Notification: 21 December 2010 Vulnerability Type: Stored XSS...
XSRF (CSRF) in F3Site
Vulnerability ID: HTB22757 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinf3site.html Product: F3Site Vendor: COMPMaster http://dhost.info/compmaster/ Vulnerable Version: 2011 alfa 1 and probably prior versions Vendor Notification: 21 December 2010 Vulnerability Type: CSRF Cross-Site Reques...
XSS vulnerability in F3Site
Vulnerability ID: HTB22755 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinf3site.html Product: F3Site Vendor: COMPMaster http://dhost.info/compmaster/ Vulnerable Version: 2011 alfa 1 and probably prior versions Vendor Notification: 21 December 2010 Vulnerability Type: Stored XSS Cro...
F3Site 2011 alfa 1 - Cross-Site Scripting / Cross-Site Request Forgery
Vulnerability ID: HTB22757 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinf3site.html Product: F3Site Vendor: COMPMaster http://dhost.info/compmaster/ Vulnerable Version: 2011 alfa 1 and probably prior versions Vendor Notification: 21 December 2010 Vulnerability Type: CSRF Cross-Site Reques...
F3Site 2011 alfa 1 - Cross-Site Scripting Cross-Site Request Forgery
F3Site 2011 alfa 1 - Cross-Site Scripting Cross-Site Request Forgery Vulnerability ID: HTB22757 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinf3site.html Product: F3Site Vendor: COMPMaster http://dhost.info/compmaster/ Vulnerable Version: 2011 alfa 1 and probably prior versions Vendor...
F3Site 2011 Alfa 1 Cross Site Request Forgery / Cross Site Scripting
======================================= Vulnerability ID: HTB22757 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinf3site.html Product: F3Site Vendor: COMPMaster http://dhost.info/compmaster/ Vulnerable Version: 2011 alfa 1 and probably prior versions Vendor Notification: 21 December 2010...
Cross-site Request Forgery Vulnerabilities in F3Site
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in F3Site which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF vulnerabilities in F3Site 1.1 The vulnerability exists due to insufficient validation of the reques...
F3Site < 2010 'GLOBALS[nlang]' Parameter Multiple LFI Vulnerabilities
F3Site is prone to multiple local file include LFI vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2009-4435
Multiple directory traversal vulnerabilities in F3Site 2009 allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the GLOBALSnlang parameter to 1 mod/poll.php and 2 mod/new.php...
Directory traversal
Multiple directory traversal vulnerabilities in F3Site 2009 allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the GLOBALSnlang parameter to 1 mod/poll.php and 2 mod/new.php...