47 matches found
EUVD-2008-5729
Malware in sbrugna...
EUVD-2009-0576
Malware in sbrugna...
EUVD-2012-4802
Malware in sbrugna...
EUVD-2012-4817
Malware in sbrugna...
EUVD-2012-4815
Malware in sbrugna...
EUVD-2008-5731
Malware in sbrugna...
Flatnux CMS 2013-01.17 (index.php, theme param) - Local File Inclusion
No description provided by source. Exploit Title: Flatnux CMS Local File Inclusion Date: 21-03-2013 Author: DaOne aka Mocking Bird Vendor Homepage: http://flatnux.altervista.org/ Software Link: http://flatnux.altervista.org/download.html?f=Flatnux-Next/flatnux-2013-01.17.zip Category: webapps/php...
Flatnux CMS 2013-01.17 - index.php Local File Inclusion
Flatnux CMS 2013-01.17 - index.php Local File Inclusion Exploit Title: Flatnux CMS Local File Inclusion Date: 21-03-2013 Author: DaOne aka Mocking Bird Vendor Homepage: http://flatnux.altervista.org/ Software Link: http://flatnux.altervista.org/download.html?f=Flatnux-Next/flatnux-2013-01.17.zip...
Flatnux CMS 2013-01.17 - 'index.php' Local File Inclusion
Exploit Title: Flatnux CMS Local File Inclusion Date: 21-03-2013 Author: DaOne aka Mocking Bird Vendor Homepage: http://flatnux.altervista.org/ Software Link: http://flatnux.altervista.org/download.html?f=Flatnux-Next/flatnux-2013-01.17.zip Category: webapps/php Version: 2013-01.17 Tested on:...
CVE-2012-4892
Multiple cross-site scripting XSS vulnerabilities in FlatnuX CMS 2012-03.08 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 titleen, 2 summaryen, or 3 bodyen parameter in a submitnews action to the news module, a different vulnerability than CVE-2012-4890. NOTE...
CVE-2012-4890
Multiple cross-site scripting XSS vulnerabilities in FlatnuX CMS 2011 08.09.2 and earlier allow remote attackers to inject arbitrary web script or HTML via a 1 comment to the news, 2 title to the news, or 3 the folder names in a gallery...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in FlatnuX CMS 2011 08.09.2 and earlier allow remote attackers to inject arbitrary web script or HTML via a 1 comment to the news, 2 title to the news, or 3 the folder names in a gallery...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in FlatnuX CMS 2012-03.08 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 titleen, 2 summaryen, or 3 bodyen parameter in a submitnews action to the news module, a different vulnerability than CVE-2012-4890. NOTE...
CVE-2012-4892
Multiple cross-site scripting XSS vulnerabilities in FlatnuX CMS 2012-03.08 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 titleen, 2 summaryen, or 3 bodyen parameter in a submitnews action to the news module, a different vulnerability than CVE-2012-4890. NOTE...
CVE-2012-4892
CVE-2012-4892 describes multiple XSS vulnerabilities in FlatnuX CMS 2012-03.08 and earlier. The issues allow remote attackers to inject arbitrary web script or HTML via the (1) title_en, (2) summary_en, or (3) body_en parameters in a submitnews action to the news module, and are noted as a differ...
CVE-2012-4890
Multiple cross-site scripting XSS vulnerabilities in FlatnuX CMS 2011 08.09.2 and earlier allow remote attackers to inject arbitrary web script or HTML via a 1 comment to the news, 2 title to the news, or 3 the folder names in a gallery...
CVE-2012-4890
CVE-2012-4890 affects FlatnuX CMS versions up to 2011 08.09.2 and earlier. The vulnerability is a cross-site scripting (XSS) flaw that allows remote attackers to inject arbitrary web script or HTML via (1) a comment to the news, (2) the news title, or (3) folder names in a gallery. The root cause...
CVE-2012-4877
Cross-site request forgery CSRF vulnerability in controlcenter.php in FlatnuX CMS 2011 08.09.2 and earlier allows remote attackers to hijack the authentication of administrators for requests that add user accounts...
CVE-2012-4878
Absolute path traversal vulnerability in controlcenter.php in FlatnuX CMS 2011 08.09.2 allows remote administrators to read arbitrary files via a full pathname in the dir parameter in a contents/Files action...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in controlcenter.php in FlatnuX CMS 2011 08.09.2 and earlier allows remote attackers to hijack the authentication of administrators for requests that add user accounts...