58 matches found
EUVD-2006-6764
Malware in sbrugna...
EUVD-2006-6763
Malware in sbrugna...
EUVD-2006-4442
Malware in sbrugna...
EUVD-2007-0837
Malware in sbrugna...
EUVD-2007-2804
Malware in sbrugna...
EUVD-2006-4531
Malware in sbrugna...
EUVD-2007-2839
Malware in sbrugna...
HLstats 1.35 HLStats.PHP Multiple Cross Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/24063/info HLstats is prone to mulitiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data. Exploiting these issues may help an attacker steal cookie-based...
HLstats 1.34 Hlstats.PHP Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/19745/info HLstats is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied data. Exploiting this issue may help the attacker steal cookie-based authentication...
HLstats 1.34 Index.PHP Multiple Cross Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/19771/info HLstats is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data. Exploiting these issues may help an attacker steal cookie-based...
HLStats <= 1.34 - (hlstats.php) Remote SQL Injection Exploit
No description provided by source. brb ?php / Live Exploit Code SQL Inection + Path Disclosure Affects HLStats HLStats =1.34 and Hlstats = 1.20 works with magicquotesgpc=On by Michael Brooks / print titleHLStats SQL Injection Exploit/title body bgcolor='009900' font color='FF0000'...
FreeBSD : hlstats -- multiple XSS vulnerabilities (09639ccc-3abb-11db-81e1-000e0c2e438a)
Kefka reports multiple cross site scripting vulnerabilities within hlstats. The vulnerabilities are caused due to improper checking of variables, allowing an attacker to perform cross site scripting. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...
HLstats 1.35 Cross Site Scripting
------------------------------------------- HLstats 1.35 XSS Exploit Contact: vhr95zw at hotmail dot com Website: http://greyhathackers.wordpress.com/ Description: HLstats 1.35 is vulnerable to XSS in stats.php. PoC:...
FreeBSD Ports: hlstats
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
FreeBSD Ports: hlstats
The remote host is missing an update to the system as announced in the referenced advisory. VID 09639ccc-3abb-11db-81e1-000e0c2e438a OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
RedLevel Advisory #020 - HLstats v1.35 Cross-Site Scripting Vulnerability #3
!-- HLstats v1.35 - Cross-Site Scripting Vulnerability 3 Vulnerable Variables: authusername, authpassword Vulnerable File: hlstats.php Vulnerable: HLstats 1.2 other versions may also be vulnerable Google d0rk: "generated in real-time by HLstats" John Martinelli [email protected] RedLevel Securi...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in hlstats.php in HLstats 1.35, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the 1 authusername or 2 authpassword parameter, different vectors than CVE-2007-0840 and CVE-2007-2812...
CVE-2007-2847
Multiple cross-site scripting XSS vulnerabilities in hlstats.php in HLstats 1.35, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the 1 authusername or 2 authpassword parameter, different vectors than CVE-2007-0840 and CVE-2007-2812...
CVE-2007-2847
CVE-2007-2847 describes multiple cross-site scripting (XSS) vulnerabilities in HLstats 1.35 (and possibly earlier) affecting hlstats.php. The flaws allow remote attackers to inject arbitrary web script or HTML via the (1) authusername or (2) authpassword parameters, with vectors different from CV...
CVE-2007-2847
Multiple cross-site scripting XSS vulnerabilities in hlstats.php in HLstats 1.35, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the 1 authusername or 2 authpassword parameter, different vectors than CVE-2007-0840 and CVE-2007-2812...