24 matches found
EUVD-2007-1709
Malware in sbrugna...
EUVD-2009-4949
Malware in sbrugna...
EUVD-2006-5656
Malware in sbrugna...
EUVD-2008-3202
Malware in sbrugna...
Scripteen Free Image Hosting Script 2.3 - SQL Injection Exploit
No description provided by source...
CVE-2009-4987
admin/header.php in Scripteen Free Image Hosting Script 2.3 allows remote attackers to bypass authentication and gain administrative access by setting the cookgid cookie value to 1, a different vector than CVE-2008-3211...
Sql injection
Multiple SQL injection vulnerabilities in header.php in Scripteen Free Image Hosting Script 2.3 allow remote attackers to execute arbitrary SQL commands via a 1 cookid or 2 cookgid cookie...
Scripteen Free Image Hosting Script Multiple Vulnerabilities
Scripteen Free Image Hosting Script is prone to multiple SQL-injection vulnerabilities and to an authentication-bypass vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Scripteen Free Image Hosting Script 2.3 - Insecure Cookie Handling
|| || | || o,7 || . o7 || q||| o\, : / / . /QQQQQQQQQQQQQQQQQQQ\ /QQQ/\QQQ\ /QQQQQ/ \QQQQQQ\ /QQQQ/ QQQQ\ /QQQQ/ \QQQQ\ |QQQQ/ By Qabandi \QQQQ| |QQQQ| |QQQQ| |QQQQ| From Kuwait, PEACE... |QQQQ| |QQQQ| |QQQQ| |QQQQ\ iqaahotmail.fr /QQQQ| \QQQQ\ /QQQQ/ \QQQQ\ /QQ\QQQQ/ \QQQQ\ \QQQQQQQ/ \QQQQQ...
CVE-2008-3212
Multiple SQL injection vulnerabilities in Scripteen Free Image Hosting Script 1.2.1 allow remote attackers to execute arbitrary SQL commands via the 1 username or 2 password parameter to admin/login.php, or the 3 uname or 4 pass parameter to login.php. NOTE: the provenance of this information is...
Sql injection
Multiple SQL injection vulnerabilities in Scripteen Free Image Hosting Script 1.2.1 allow remote attackers to execute arbitrary SQL commands via the 1 username or 2 password parameter to admin/login.php, or the 3 uname or 4 pass parameter to login.php. NOTE: the provenance of this information is...
CVE-2008-3212
Multiple SQL injection vulnerabilities in Scripteen Free Image Hosting Script 1.2.1 allow remote attackers to execute arbitrary SQL commands via the 1 username or 2 password parameter to admin/login.php, or the 3 uname or 4 pass parameter to login.php. NOTE: the provenance of this information is...
CVE-2008-3212
The CVE-2008-3212 entry concerns the Scripteen Free Image Hosting Script 1.2.1. It describes multiple SQL injection vulnerabilities allowing remote attackers to execute arbitrary SQL commands via the following parameters: (1) username or (2) password to admin/login.php, and (3) uname or (4) pass ...
CVE-2007-1715
PHP remote file inclusion vulnerability in frontpage.php in Free Image Hosting 2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the ADBODYTEMP parameter. NOTE: the forgotpass.php vector is already covered by CVE-2006-5670, and the login.php vector overlaps...
CVE-2007-1715
The CVE-2007-1715 issue affects Free Image Hosting 2.0 and earlier, with a vulnerability in frontpage.php that allows PHP code execution via a URL in the AD_BODY_TEMP parameter (remote file inclusion). The vulnerability arises from including remote files through user-controlled input, enabling ar...
CVE-2007-1715
PHP remote file inclusion vulnerability in frontpage.php in Free Image Hosting 2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the ADBODYTEMP parameter. NOTE: the forgotpass.php vector is already covered by CVE-2006-5670, and the login.php vector overlaps...
Free Image Hosting <= 2.0 (AD_BODY_TEMP) Remote File Inclusion Vulns
No description provided by source. Baslik :ImageUpload Script Remote File Inclusion Exploit Free Image Hosting 2.0 .ndir : http://free-php-scripts.net/scripts/ImageUpload.zip Bulan :CrackersChild Zay.flk : Exploit : www.site.com/imageuploadpath/login.php?ADBODYTEMP=Shell? :...
Image_Upload Script Remote File Inclusion Exploit Free Image Hosting 2.0
Baslik :ImageUpload Script Remote File Inclusion Exploit Free Image Hosting 2.0 .ndir : http://free-php-scripts.net/scripts/ImageUpload.zip Bulan :CrackersChild Zay.flk : tddiv align="center"?php include$ADBODYTEMP;?/div/td Exploit : www.site.com/imageuploadpath/login.php?ADBODYTEMP=Shell? :...
CVE-2006-5670
PHP remote file inclusion vulnerability in forgotpass.php in Free Image Hosting 1.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the ADBODYTEMP parameter...
CVE-2006-5671
PHP remote file inclusion vulnerability in contact.php in Free Image Hosting 1.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the ADBODYTEMP parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party informati...