EUVD-2007-0807

Malware in sbrugna...

EUVD-2006-0829

Malware in sbrugna...

Geeklog <= 1.5.2 savepreferences()/*blocks[] remote sql injection exploit

?php / Geeklog = 1.5.2 savepreferences/blocks remote sql injection exploit by Nine:Situations:Group::bookoo our site: http://retrogod.altervista.org/ software site: http://www.geeklog.net/ PHP and MySQL version independent vulnerability, see usersettings.php near lines 1467 - 1480: ... if isset...

Geeklog 1.3.5 - HTML Attribute Cross-Site Scripting

source: https://www.securityfocus.com/bid/5270/info A cross site scripting vulnerability has been reported for Geeklog. Reportedly, Geeklog does not properly sanitize user supplied input before being included when posting comments or writing stories. Geeklog makes efforts to sanitize some malicio...

CVE-2002-0097

Geeklog 1.3 allows remote attackers to hijack user accounts, including the administrator account, by modifying the UID of a user's permanent cookie to the target account...

Geeklog 1.3.5 - Calendar Event Form Script Injection

Geeklog 1.3.5 - Calendar Event Form Script Injection source: https://www.securityfocus.com/bid/4974/info Geeklog does not sufficiently sanitize script code from form fields, making it prone to script injection attacks. Attacker-supplied script code may potentially end up in webpages generated by...