15 matches found
EUVD-2006-3234
Malware in sbrugna...
[SECURITY] Fedora 30 Update: cyrus-imapd-3.0.13-1.fc30
The Cyrus IMAP Internet Message Access Protocol server provides access to personal mail, system-wide bulletin boards, news-feeds, calendar and contac ts through the IMAP, JMAP, NNTP, CalDAV and CardDAV protocols. The Cyrus IMAP server is a scalable enterprise groupware system designed for use fro...
EnterpriseGS <= 1.0 rc4 Remote Commands Execution Exploit
No description provided by source. ?php ---egs10rc4php5inclxpl.php 17.57 13/02/2006 EGS Enterprise Groupware System =1.0 rc4 remote commands execution exploit coded by rgod site: http://retrogod.altervista.org - works against PHP5 usage: launch from Apache, fill in requested fields, then go!...
Debian DSA-1978-1 : phpgroupware - several vulnerabilities
Several remote vulnerabilities have been discovered in phpgroupware, a Web-based groupware system written in PHP. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-4414 A SQL injection vulnerability was found in the authentication module. -...
DSA-1752-1 webcit - potential remote code execution
Bulletin has no description...
CVE-2006-3237
Cross-site scripting XSS vulnerability in index.php in Enterprise Groupware System EGS 1.2.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the module parameter...
CVE-2006-3237
The CVE-2006-3237 entry describes a Cross-site scripting (XSS) flaw in the Enterprise Groupware System (EGS) before or at version 1.2.4, exploitable via the module parameter on index.php. The underlying issue is an input handling/reflective scripting vector that allows remote attackers to inject ...
EGS Enterprise Groupware System 1.0 rc4 remote commands execution & FlySpray 0.9.7 remote commands execution
--------EGS Enterprise Groupware System 1.0 rc4 possibly prior versions------- remote code execution -------------------------------------------------------------------------------- software: site: http://egs.sourceforge.net/ description: "EGS is an Open Source business system released under the...
egs_10rc4_php5_incl_xpl.php.txt
--------EGS Enterprise Groupware System 1.0 rc4 possibly prior versions------- remote code execution -------------------------------------------------------------------------------- software: site: http://egs.sourceforge.net/ description: "EGS is an Open Source business system released under the...
EnterpriseGS <= 1.0 rc4 Remote Commands Execution Exploit
Exploit for unknown platform in category web applications ========================================================= EnterpriseGS works against PHP5 usage: launch from Apache, fill in requested fields, then go! Sun-Tzu: "Thus the energy developed by good fighting men is as the momentum of a round...
EnterpriseGS <= 1.0 rc4 Remote Commands Execution Exploit
No description provided by source. ?php ---egs10rc4php5inclxpl.php 17.57 13/02/2006 EGS Enterprise Groupware System =1.0 rc4 remote commands execution exploit coded by rgod site: http://retrogod.altervista.org - works against PHP5 usage: launch from Apache, fill in requested fields, then go!...
FlySpray 0.9.7 - 'install-0.9.7.php' Remote Command Execution
works against PHP5 usage: launch from Apache, fill in requested fields, then go! Sun-Tzu: "Therefore the good fighter will be terrible in his onset, and prompt in his decision" / short explaination: found this bug in FlySpray, exploiting EGS Enterprise Groupware System 1.0 rc4, see this link for...
phpGroupWare Detection
The remote host is running PHPGroupWare, a groupware system written in PHP. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid15982; scriptversion"1.19"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/06/01"; scriptnameenglish:"phpGroupWare Detection"...
CVE-2001-0973
CVE-2001-0973 concerns BSCW groupware (versions 3.3–4.0.2 beta). The vulnerability arises when extracting tar archives into the user’s data-bag space: symbolic links within the tar are followed, allowing a remote attacker to read arbitrary files readable by the web server and potentially overwrit...
BSCW: Vulnerabilities and Problems
------------------------------------------------------------------------ -= BSCW Security Issues - Audit report 02 - 7. Sept. 2001 =- ------------------------------------------------------------------------ BSCW is a groupware system that runs on a webserver. For more information about BSCW visit...