5 matches found
EUVD-2006-0721
Malware in sbrugna...
CVE-2006-0714
Directory traversal vulnerability in the installation file sql/install-0.9.7.php in Flyspray 0.9.7 allows remote attackers to include arbitrary files via a .. dot dot sequence in the adodbpath parameter...
CVE-2006-0714
Directory traversal vulnerability in the installation file sql/install-0.9.7.php in Flyspray 0.9.7 allows remote attackers to include arbitrary files via a .. dot dot sequence in the adodbpath parameter...
FlySpray 0.9.7 - 'install-0.9.7.php' Remote Command Execution
works against PHP5 usage: launch from Apache, fill in requested fields, then go! Sun-Tzu: "Therefore the good fighter will be terrible in his onset, and prompt in his decision" / short explaination: found this bug in FlySpray, exploiting EGS Enterprise Groupware System 1.0 rc4, see this link for...
CVE-2005-3334
Cross-site scripting XSS vulnerability in index.php in Flyspray 0.9.7 through 0.9.8 devel allows remote attackers to inject arbitrary web script or HTML via the 1 PHPSESSID, 2 task, 3 string, 4 type, 5 serv, 6 due, 7 dev, and 8 sort2 parameters...