16 matches found
EUVD-2008-4606
Malware in sbrugna...
EUVD-2007-5964
Malware in sbrugna...
fritz-berger.de XSS vulnerability
Vulnerable URL: https://www.fritz-berger.de/suche?q=%22%3Eblub%3Csvg%2Fonload%3Dalert%28%2FOPENBUGBOUNTY%2F%29%3E%27 Details: Description| Value ---|--- Patched:| Yes, at 21.06.2017 Latest check for patch:| 21.06.2017 10:26 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...
Fritz Berger - Certificates or keys found, Suspicious files vulnerabilities
HackApp vulnerability scanner discovered that application Fritz Berger published at the 'play' market has multiple vulnerabilities...
Cross site scripting
Cross-site scripting XSS vulnerability in Fritz Berger yet another php photo album - next generation yappa-ng allows remote attackers to inject arbitrary web script or HTML via the query string to the default URI...
CVE-2008-6515
Cross-site scripting XSS vulnerability in Fritz Berger yet another php photo album - next generation yappa-ng allows remote attackers to inject arbitrary web script or HTML via the query string to the default URI...
CVE-2008-6515
Cross-site scripting XSS vulnerability in Fritz Berger yet another php photo album - next generation yappa-ng allows remote attackers to inject arbitrary web script or HTML via the query string to the default URI...
CVE-2008-6495
Cross-site scripting XSS vulnerability in index.php in Fritz Berger yet another php photo album - next generation yappa-ng 2.3.2 allows remote attackers to inject arbitrary web script or HTML via the album parameter...
CVE-2008-4626
Directory traversal vulnerability in index.php in Fritz Berger yet another php photo album - next generation yappa-ng 2.3.2 and possibly other versions through 2.3.3-beta0, when magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in th...
CVE-2008-4626
The CVE-2008-4626 issue affects yappa-ng (Fritz Berger yet another php photo album) paired with PHP. A Local File Inclusion vulnerability exists in index.php: when magic_quotes_gpc is disabled, the album parameter can cause the script to include and potentially execute local files. Affected versi...
CVE-2008-4626
Directory traversal vulnerability in index.php in Fritz Berger yet another php photo album - next generation yappa-ng 2.3.2 and possibly other versions through 2.3.3-beta0, when magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in th...
Remote file inclusion
PHP remote file inclusion vulnerability in checknoimage.php in Fritz Berger yet another php photo album - next generation yappa-ng 2.3.2 allows remote attackers to execute arbitrary PHP code via a URL in the configpathsrcinclude parameter...
CVE-2007-5994
PHP remote file inclusion vulnerability in checknoimage.php in Fritz Berger yet another php photo album - next generation yappa-ng 2.3.2 allows remote attackers to execute arbitrary PHP code via a URL in the configpathsrcinclude parameter...
CVE-2007-5994
CVE-2007-5994 describes a PHP remote file inclusion in Fritz Berger’s yet another php photo album - next generation (yappa-ng) 2.3.2. The flaw occurs in check_noimage.php when an attacker supplies a URL in the config[path_src_include] parameter, allowing arbitrary PHP code execution on the affect...
CVE-2007-5994
PHP remote file inclusion vulnerability in checknoimage.php in Fritz Berger yet another php photo album - next generation yappa-ng 2.3.2 allows remote attackers to execute arbitrary PHP code via a URL in the configpathsrcinclude parameter...
Yappa-NG Multiple Vulnerabilities
GulfTech Security Research May 11th, 2005 Vendor : Fritz Berger URL : http://sourceforge.net/projects/yappa-ng/ Version : yappa-ng 2.3.1 && Earlier Risk : Multiple Vulnerabilities Description: Yappa-NG is the second generation new and improved version of Yappa yet another php photo album. There a...