16 matches found
EUVD-2008-4606
Malware in sbrugna...
EUVD-2007-5964
Malware in sbrugna...
fritz-berger.de XSS vulnerability
Vulnerable URL: https://www.fritz-berger.de/suche?q=%22%3Eblub%3Csvg%2Fonload%3Dalert%28%2FOPENBUGBOUNTY%2F%29%3E%27 Details: Description| Value ---|--- Patched:| Yes, at 21.06.2017 Latest check for patch:| 21.06.2017 10:26 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...
Fritz Berger - Certificates or keys found, Suspicious files vulnerabilities
HackApp vulnerability scanner discovered that application Fritz Berger published at the 'play' market has multiple vulnerabilities...
CVE-2008-6515
Cross-site scripting XSS vulnerability in Fritz Berger yet another php photo album - next generation yappa-ng allows remote attackers to inject arbitrary web script or HTML via the query string to the default URI...
Cross site scripting
Cross-site scripting XSS vulnerability in Fritz Berger yet another php photo album - next generation yappa-ng allows remote attackers to inject arbitrary web script or HTML via the query string to the default URI...
CVE-2008-6515
Cross-site scripting XSS vulnerability in Fritz Berger yet another php photo album - next generation yappa-ng allows remote attackers to inject arbitrary web script or HTML via the query string to the default URI...
CVE-2008-6495
Cross-site scripting XSS vulnerability in index.php in Fritz Berger yet another php photo album - next generation yappa-ng 2.3.2 allows remote attackers to inject arbitrary web script or HTML via the album parameter...
CVE-2008-4626
Directory traversal vulnerability in index.php in Fritz Berger yet another php photo album - next generation yappa-ng 2.3.2 and possibly other versions through 2.3.3-beta0, when magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in th...
CVE-2008-4626
Directory traversal vulnerability in index.php in Fritz Berger yet another php photo album - next generation yappa-ng 2.3.2 and possibly other versions through 2.3.3-beta0, when magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in th...
CVE-2008-4626
The CVE-2008-4626 issue affects yappa-ng (Fritz Berger yet another php photo album) paired with PHP. A Local File Inclusion vulnerability exists in index.php: when magic_quotes_gpc is disabled, the album parameter can cause the script to include and potentially execute local files. Affected versi...
Remote file inclusion
PHP remote file inclusion vulnerability in checknoimage.php in Fritz Berger yet another php photo album - next generation yappa-ng 2.3.2 allows remote attackers to execute arbitrary PHP code via a URL in the configpathsrcinclude parameter...
CVE-2007-5994
PHP remote file inclusion vulnerability in checknoimage.php in Fritz Berger yet another php photo album - next generation yappa-ng 2.3.2 allows remote attackers to execute arbitrary PHP code via a URL in the configpathsrcinclude parameter...
CVE-2007-5994
CVE-2007-5994 describes a PHP remote file inclusion in Fritz Berger’s yet another php photo album - next generation (yappa-ng) 2.3.2. The flaw occurs in check_noimage.php when an attacker supplies a URL in the config[path_src_include] parameter, allowing arbitrary PHP code execution on the affect...
CVE-2007-5994
PHP remote file inclusion vulnerability in checknoimage.php in Fritz Berger yet another php photo album - next generation yappa-ng 2.3.2 allows remote attackers to execute arbitrary PHP code via a URL in the configpathsrcinclude parameter...
Yappa-NG Multiple Vulnerabilities
GulfTech Security Research May 11th, 2005 Vendor : Fritz Berger URL : http://sourceforge.net/projects/yappa-ng/ Version : yappa-ng 2.3.1 && Earlier Risk : Multiple Vulnerabilities Description: Yappa-NG is the second generation new and improved version of Yappa yet another php photo album. There a...