45 matches found
EUVD-2006-2894
Malware in sbrugna...
EUVD-2005-2571
Malware in sbrugna...
EUVD-2006-5759
Malware in sbrugna...
EUVD-2005-2570
Malware in sbrugna...
FunkBoard 0.66 prefs.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/14507/info FunkBoard is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues t...
FunkBoard 0.66 reply.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/14507/info FunkBoard is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues t...
FunkBoard 0.66 newtopic.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/14507/info FunkBoard is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues t...
FunkBoard 0.66 profile.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/14507/info FunkBoard is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues t...
FunkBoard 0.66 editpost.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/14507/info FunkBoard is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues t...
CVE-2006-5775
Cross-site scripting XSS vulnerability in profile.php in FunkBoard 0.71 before 4 November 2006 at 18:16 GMT allows remote attackers to inject arbitrary web script or HTML, possibly via the name parameter...
CVE-2006-5775
Technical details about CVE-2006-5775 are not publicly provided in the connected documents. No explicit affected products, versions, or fixes are detailed here. Monitor for updates.
CVE-2006-5775
Cross-site scripting XSS vulnerability in profile.php in FunkBoard 0.71 before 4 November 2006 at 18:16 GMT allows remote attackers to inject arbitrary web script or HTML, possibly via the name parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in FunkBoard 0.71 allows remote attackers to inject arbitrary HTML or web script via unspecified vectors...
CVE-2006-2896
profile.php in FunkBoard CF0.71 allows remote attackers to change arbitrary passwords via a modified uid hidden form field in an Edit Profile action...
CVE-2006-2897
Cross-site scripting XSS vulnerability in FunkBoard 0.71 allows remote attackers to inject arbitrary HTML or web script via unspecified vectors...
Deserialization of untrusted data
profile.php in FunkBoard CF0.71 allows remote attackers to change arbitrary passwords via a modified uid hidden form field in an Edit Profile action...
CVE-2006-2897
Cross-site scripting XSS vulnerability in FunkBoard 0.71 allows remote attackers to inject arbitrary HTML or web script via unspecified vectors...
CVE-2006-2897
CVE-2006-2897 concerns FunkBoard 0.71 and is described as a cross‑site scripting (XSS) vulnerability. The affected component is FunkBoard 0.71; the underlying flaw is not detailed beyond the XSS vector being unspecified, with the NVD entry indicating the vulnerability can lead to HTML or script i...
CVE-2006-2896
CVE-2006-2896: FunkBoard CF0.71 suffers from a vulnerability in profile.php where a remote attacker can change arbitrary passwords by tampering with a hidden uid field in the Edit Profile action. Affected component is the profile handling in FunkBoard CF0.71; root cause is the inability to valida...
CVE-2006-2896
profile.php in FunkBoard CF0.71 allows remote attackers to change arbitrary passwords via a modified uid hidden form field in an Edit Profile action...