22 matches found
EUVD-2008-3370
Malware in sbrugna...
EUVD-2008-3853
Malware in sbrugna...
interact 2.4.1 - Multiple Remote File Inclusion Vulnerabilities
No description provided by source. -========================================== ViVa Islam + YeMeN ====================================- Name : interact 2.4.1 Multiple Remote RFI Vulnerabiliy Download From : http://puzzle.dl.sourceforge.net/sourceforge/cce-interact/interact-2-4-1.tar.gz Found By :...
Interact 2.4.1 - SQL Injection Vulnerability
No description provided by source. Title: Interact 2.4.1 SQL Injection Title : Interact 2.4.1 SQL Injection Affected Version : Interact = 2.4.1 Vendor Site : http://sourceforge.net/projects/cce-interact/ Discovery : Vulnerabilites : SQL Injection: in search.php file line 44: $searchtermsraw =...
Interact 2.4.1 SQL Injection Vulnerability
Exploit for php platform in category web applications Title : Interact 2.4.1 SQL Injection Affected Version : Interact l0rd D3lt4l0rD & Turb0 ,,,, email protected S.V.T :D 0day.today 2018-02-06...
Interact 2.4.1 - SQL Injection
Interact 2.4.1 - SQL Injection Title: Interact 2.4.1 SQL Injection Title : Interact 2.4.1 SQL Injection Affected Version : Interact l0rd D3lt4l0rD & Turb0 ,,,, [email protected] S.V.T :D...
Interact 2.4.1 SQL Injection
Title: Interact 2.4.1 SQL Injection Title : Interact 2.4.1 SQL Injection Affected Version : Interact l0rd D3lt4l0rD & Turb0 ,,,, [email protected] S.V.T :D...
CVE-2008-3868
Cross-site request forgery CSRF vulnerability in Interact 2.4.1 allows remote attackers to hijack the authentication of super administrators for requests that create super administrator accounts...
CVE-2008-3867
SQL injection vulnerability in spaces/emailuser.php in Interact 2.4.1 allows remote attackers to execute arbitrary SQL commands via the emailuserkey parameter...
Sql injection
SQL injection vulnerability in spaces/emailuser.php in Interact 2.4.1 allows remote attackers to execute arbitrary SQL commands via the emailuserkey parameter...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in Interact 2.4.1 allows remote attackers to hijack the authentication of super administrators for requests that create super administrator accounts...
CVE-2008-3867
Vulnerability summary: CVE-2008-3867 affects Interact 2.4.1. The vulnerability is a SQL injection in spaces/emailuser.php, where input from the email_user_key parameter is not properly sanitized before use in SQL queries, allowing remote attackers to execute arbitrary SQL commands. Impact (as sta...
CVE-2008-3868
Cross-site request forgery CSRF vulnerability in Interact 2.4.1 allows remote attackers to hijack the authentication of super administrators for requests that create super administrator accounts...
CVE-2008-3867
SQL injection vulnerability in spaces/emailuser.php in Interact 2.4.1 allows remote attackers to execute arbitrary SQL commands via the emailuserkey parameter...
CVE-2008-3868
Concretely, CVE-2008-3868 affects Interact 2.4.1 and is a CSRF vulnerability that can allow remote attackers to hijack a super administrator’s session to perform actions that create new super administrator accounts. The root cause is forged HTTP requests that are executed in the context of an aut...
Secunia Research: Interact SQL Injection and Cross-Site Request Forgery
====================================================================== Secunia Research 31/10/2008 - Interact SQL Injection and Cross-Site Request Forgery - ====================================================================== Table of Contents Affected...
CVE-2008-3384
Multiple directory traversal vulnerabilities in help/help.php in Interact Learning Community Environment Interact 2.4.1 allow remote attackers to include and execute arbitrary local files via a .. dot dot in the 1 module and 2 file parameters...
CVE-2008-3384
CVE-2008-3384 affects Interact Learning Community Environment Interact 2.4.1. Multiple directory traversal vulnerabilities in help/help.php allow remote attackers to include and execute arbitrary local files via a .. in the (1) module and (2) file parameters. The NVD entry notes a CVSS v2 base sc...
CVE-2008-2220
Multiple PHP remote file inclusion vulnerabilities in Interact Learning Community Environment Interact 2.4.1, when registerglobals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the 1 CONFIGLANGUAGECPATH parameter to modules/forum/embedforum.php and the 2...
CVE-2008-2220
CVE-2008-2220 affects Interact Learning Community Environment Interact 2.4.1. The vulnerability arises when register_globals is enabled and enables remote PHP code execution via remote file inclusion. Specifically, an attacker can supply a URL via CONFIG[LANGUAGE_CPATH] to modules/forum/embedforu...