7 matches found
EUVD-2008-7002
Malware in sbrugna...
CVE-2008-7043
Cross-site scripting XSS vulnerability in register.php in FreshScripts Fresh Email Script 1.0 through 1.11 allows remote attackers to inject arbitrary web script or HTML via the Email parameter. NOTE: this can be leveraged to modify cookies and conduct session fixation attacks...
CVE-2008-7042
PHP remote file inclusion vulnerability in url.php in FreshScripts Fresh Email Script 1.0 through 1.11 allows remote attackers to execute arbitrary PHP code via a URL in the tmpsid parameter...
CVE-2008-7043
CVE-2008-7043 affects FreshScripts Fresh Email Script 1.0–1.11. The vulnerability is in the register.php flow where the Email parameter can be exploited to inject arbitrary web script or HTML (XSS). The described impact includes potential cookie modification and session fixation attacks. Exploita...
CVE-2008-7042
PHP remote file inclusion vulnerability in url.php in FreshScripts Fresh Email Script 1.0 through 1.11 allows remote attackers to execute arbitrary PHP code via a URL in the tmpsid parameter...
CVE-2008-7042
The CVE-2008-7042 entry refers to a PHP remote file inclusion vulnerability in FreshScripts Fresh Email Script, versions 1.0 through 1.11. The flaw allows remote attackers to execute arbitrary PHP code by supplying a URL in the tmp_sid parameter of url.php. This indicates an RFI in a user-supplie...
CVE-2008-7043
Cross-site scripting XSS vulnerability in register.php in FreshScripts Fresh Email Script 1.0 through 1.11 allows remote attackers to inject arbitrary web script or HTML via the Email parameter. NOTE: this can be leveraged to modify cookies and conduct session fixation attacks...