47 matches found
EUVD-2006-3559
Malware in sbrugna...
EUVD-2006-0765
Malware in sbrugna...
EUVD-2006-0764
Malware in sbrugna...
EUVD-2006-0763
Malware in sbrugna...
EUVD-2006-3561
Malware in sbrugna...
EUVD-2006-3560
Malware in sbrugna...
HiveMail 1.2.2/1.3 folders.update.php folderid Variable Arbitrary PHP Command Execution
No description provided by source. source: http://www.securityfocus.com/bid/16591/info HiveMail is prone to multiple vulnerabilities. These vulnerabilities may allow the execution of arbitrary PHP code, cross-site scripting attacks, and SQL injection. The PHP code-execution issues are the result ...
Hivemail Webmail Multiple Stored XSS Vulnerabilities
No description provided by source. !/usr/bin/python ''' Exploit Title: Hivemail Webmail Multiple Stored XSS issues Date: 16/08/2012 Exploit Author: Shai rod @NightRang3r Vendor Homepage: http://www.hivemail.com/ Software Link: http://www.hivemail.com/data/HM141F103.rar Version: 1.41F Build 103...
HiveMail 1.2.2/1.3 index.php $_SERVER['PHP_SELF'] XSS
No description provided by source. source: http://www.securityfocus.com/bid/16591/info HiveMail is prone to multiple vulnerabilities. These vulnerabilities may allow the execution of arbitrary PHP code, cross-site scripting attacks, and SQL injection. The PHP code-execution issues are the result ...
HiveMail <= 1.3 (addressbook.add.php) Remote Code Execution Exploit
No description provided by source. !/usr/bin/perl HiveMail = 1.3 remote command execution exploit Advisory: http://www.gulftech.org/?node=research&articleid=00098-02102006 To get the hivesession: log on hivemail with firefox then look at the hivesession number in the url. yes i know... Dork:...
HiveMail 1.2.2/1.3 addressbook.update.php contactgroupid Variable Arbitrary PHP Command Execution
No description provided by source. source: http://www.securityfocus.com/bid/16591/info HiveMail is prone to multiple vulnerabilities. These vulnerabilities may allow the execution of arbitrary PHP code, cross-site scripting attacks, and SQL injection. The PHP code-execution issues are the result ...
Hivemail Webmail - Multiple Persistent Cross-Site Scripting Vulnerabilities
Hivemail Webmail - Multiple Persistent Cross-Site Scripting Vulnerabilities !/usr/bin/python ''' Exploit Title: Hivemail Webmail Multiple Stored XSS issues Date: 16/08/2012 Exploit Author: Shai rod @NightRang3r Vendor Homepage: http://www.hivemail.com/ Software Link:...
Hivemail Webmail Multiple Stored XSS Vulnerabilities
Exploit for php platform in category web applications !/usr/bin/python ''' Exploit Title: Hivemail Webmail Multiple Stored XSS issues Date: 16/08/2012 Exploit Author: Shai rod @NightRang3r Vendor Homepage: http://www.hivemail.com/ Software Link: http://www.hivemail.com/data/HM141F103.rar Version:...
Hivemail Webmail - Multiple Persistent Cross-Site Scripting Vulnerabilities
!/usr/bin/python ''' Exploit Title: Hivemail Webmail Multiple Stored XSS issues Date: 16/08/2012 Exploit Author: Shai rod @NightRang3r Vendor Homepage: http://www.hivemail.com/ Software Link: http://www.hivemail.com/data/HM141F103.rar Version: 1.41F Build 103 Gr33Tz: @aviadgolan , @benhayak,...
Hivemail Webmail 1.41F Build 103 Cross Site Scripting
!/usr/bin/python ''' Exploit Title: Hivemail Webmail Multiple Stored XSS issues Date: 16/08/2012 Exploit Author: Shai rod @NightRang3r Vendor Homepage: http://www.hivemail.com/ Software Link: http://www.hivemail.com/data/HM141F103.rar Version: 1.41F Build 103 Gr33Tz: @aviadgolan , @benhayak,...
CVE-2006-3564
Multiple cross-site scripting XSS vulnerabilities in HiveMail 1.3 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the email, 2 cond, or 3 name parameters to a addressbook.view.php, 4 the daysprune parameter to b index.php, 5 the datato parameter to c...
CVE-2006-3566
search.results.php in HiveMail 3.1 and earlier allows remote attackers to obtain the installation path via certain manipulations related to the 1 searchdate and 2 folderids parameters...
CVE-2006-3565
SQL injection vulnerability in search.results.php in HiveMail 1.3 and earlier allows remote attackers to execute arbitrary SQL commands via the fields parameter...
CVE-2006-3566
CVE-2006-3566 affects HiveMail 3.1 and earlier. The vulnerability lies in search.results.php, where certain manipulations of the (1) searchdate and (2) folderids parameters allow remote attackers to obtain the installation path. This is an information-disclosure flaw. The available documents do n...
CVE-2006-3564
Multiple cross-site scripting XSS vulnerabilities in HiveMail 1.3 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the email, 2 cond, or 3 name parameters to a addressbook.view.php, 4 the daysprune parameter to b index.php, 5 the datato parameter to c...