19 matches found
EUVD-2008-5019
Malware in sbrugna...
EUVD-2008-4740
Malware in sbrugna...
EUVD-2009-1847
Malware in sbrugna...
Sql injection
Multiple SQL injection vulnerabilities in Graphiks MyForum 1.3 allow remote attackers to execute arbitrary SQL commands via the 1 Username and 2 Password fields...
CVE-2009-1852
Multiple SQL injection vulnerabilities in Graphiks MyForum 1.3 allow remote attackers to execute arbitrary SQL commands via the 1 Username and 2 Password fields...
CVE-2009-1852
CVE-2009-1852 covers multiple SQL injection vulnerabilities in Graphiks MyForum 1.3, allowing remote attackers to execute arbitrary SQL commands via the (1) Username and (2) Password fields. The issue enables unauthenticated network access with partial confidentiality, integrity, and availability...
CVE-2009-1852
Multiple SQL injection vulnerabilities in Graphiks MyForum 1.3 allow remote attackers to execute arbitrary SQL commands via the 1 Username and 2 Password fields...
CVE-2008-5040
Graphiks MyForum 1.3 allows remote attackers to bypass authentication and gain administrative access by setting the 1 myforumlogin and 2 myforumpass cookies to 1...
Authentication flaw
Graphiks MyForum 1.3 allows remote attackers to bypass authentication and gain administrative access by setting the 1 myforumlogin and 2 myforumpass cookies to 1...
CVE-2008-5040
Graphiks MyForum 1.3 allows remote attackers to bypass authentication and gain administrative access by setting the 1 myforumlogin and 2 myforumpass cookies to 1...
CVE-2008-5040
Graphiks MyForum 1.3 is affected by CVE-2008-5040: remote attackers can bypass authentication and gain administrative access by setting cookies myforum_login and myforum_pass to 1. Root cause is improper cookie-based auth handling. Impact: unauthorized admin access. Public references exist (NVD e...
CVE-2008-4760
SQL injection vulnerability in lecture.php in Graphiks MyForum 1.3, when registerglobals is enabled, allows remote attackers to execute arbitrary SQL commands via the id parameter...
Sql injection
SQL injection vulnerability in lecture.php in Graphiks MyForum 1.3, when registerglobals is enabled, allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2008-4760
SQL injection vulnerability in lecture.php in Graphiks MyForum 1.3, when registerglobals is enabled, allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2008-4760
CVE-2008-4760 affects Graphiks MyForum 1.3. The vulnerability is a SQL injection in lecture.php when register_globals is enabled, allowing remote execution of arbitrary SQL commands via the id parameter. Available records (NVD/NVD-derived) rate the impact as Medium (CVSS v2 base score 6.8) with n...
MySpeach 3.0.7 - LocalRemote File Inclusion
MySpeach 3.0.7 - LocalRemote File Inclusion /=======================================\ | Advisory :: MySpeach = 5.0.0, registerglobals = On, allowurlfopen = On | | Vuln 2 : registerglobals = On | | Risk level : High | | |...
MySpeach 2.1b - 'up.php' Remote File Inclusion
------------------------------------------------------------------------------------------------------------------------ Script:MySpeach Affected Version:beta2.1 and maybe older Downlaoad:http://www.graphiks.net/scripts/chat/myspeach-2.1beta.zip...
Graphiks GrapAgenda Index.PHP远程文件包含漏洞
Graphiks GrapAgenda是一款基于PHP的WEB应用程序。 Graphiks GrapAgenda不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是由于'Index.PHP'脚本对用户提交的'cmd'参数缺少过滤,提交恶意的远程服务器作为包含对象,可导致以WEB进程权限执行任意PHP代码。 Graphiks GrapAgenda 0.1 http://www.graphiks.net/ http://www.example.com/agendapath/index.php?page=yourcode.txt?cmd=id...
GrapAgenda 0.1 - 'page' Remote File Inclusion
Kurdish Security Advisory Original Advisory : http://kurdishsecurity.blogspot.com/2006/09/kurdish-security-25-grapagenda-remote.html Script : GrapAgenda Site : http://www.graphiks.net Version : 0.1 Risk : High Class : Remote Contact : [email protected] and irc.gigachat.net kurdhack Nice cracker...