18 matches found
EUVD-2011-1670
Malware in sbrugna...
HTB22931: XSS vulnerability in InTerra Blog Machine
Vulnerability ID: HTB22931 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityininterrablogmachine.html Product: InTerra Blog Machine Vendor: InTerra Blog Machine Team http://code.google.com/p/interra/ Vulnerable Version: 1.84 and probably prior versions Vendor Notification: 31 March 2011...
CVE-2011-1670
Cross-site scripting XSS vulnerability in actions/add.php in InTerra Blog Machine 1.84, and possibly earlier versions, allows remote attackers to inject arbitrary web script or HTML via the subject parameter to posturl/edit...
Cross site scripting
Cross-site scripting XSS vulnerability in actions/add.php in InTerra Blog Machine 1.84, and possibly earlier versions, allows remote attackers to inject arbitrary web script or HTML via the subject parameter to posturl/edit...
CVE-2011-1670
Cross-site scripting XSS vulnerability in actions/add.php in InTerra Blog Machine 1.84, and possibly earlier versions, allows remote attackers to inject arbitrary web script or HTML via the subject parameter to posturl/edit...
CVE-2011-1670
CVE-2011-1670 is an XSS vulnerability in InTerra Blog Machine 1.84 (and possibly earlier) due to unsafely handling the subject parameter in post_url/edit via actions/add.php. Remote attackers can inject arbitrary script/HTML that executes in a user’s browser. Some sources also describe related CS...
CVE-2011-1670
Cross-site scripting XSS vulnerability in actions/add.php in InTerra Blog Machine 1.84, and possibly earlier versions, allows remote attackers to inject arbitrary web script or HTML via the subject parameter to posturl/edit...
InTerra Blog Machine 1.84 XSS Vulnerability
No description provided by source. Vulnerability ID: HTB22931 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityininterrablogmachin e.html Product: InTerra Blog Machine Vendor: InTerra Blog Machine Team http://code.google.com/p/interra/ Vulnerable Version: 1.84 and probably prior version...
InTerra Blog Machine 1.84 XSS Vulnerability
Exploit for php platform in category web applications Product: InTerra Blog Machine Vendor: InTerra Blog Machine Team http://code.google.com/p/interra/ Vulnerable Version: 1.84 and probably prior versions Vendor Notification: 31 March 2011 Vulnerability Type: Stored XSS Cross Site Scripting Risk...
InTerra Blog Machine 1.84 - Cross-Site Scripting
Vulnerability ID: HTB22931 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityininterrablogmachin e.html Product: InTerra Blog Machine Vendor: InTerra Blog Machine Team http://code.google.com/p/interra/ Vulnerable Version: 1.84 and probably prior versions Vendor Notification: 31 March 201...
InTerra Blog Machine 1.84 - Cross-Site Scripting
InTerra Blog Machine 1.84 - Cross-Site Scripting Vulnerability ID: HTB22931 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityininterrablogmachin e.html Product: InTerra Blog Machine Vendor: InTerra Blog Machine Team http://code.google.com/p/interra/ Vulnerable Version: 1.84 and probably...
Interra Blog Machine 1.84 Cross Site Scripting
Vulnerability ID: HTB22931 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityininterrablogmachine.html Product: InTerra Blog Machine Vendor: InTerra Blog Machine Team http://code.google.com/p/interra/ Vulnerable Version: 1.84 and probably prior versions Vendor Notification: 31 March 2011...
InTerra Blog Machine 1.84 - subject HTML Injection
InTerra Blog Machine 1.84 - subject HTML Injection source: https://www.securityfocus.com/bid/47104/info InTerra Blog Machine is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code ...
HTB22931: XSS vulnerability in InTerra Blog Machine
Vulnerability ID: HTB22931 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityininterrablogmachine.html Product: InTerra Blog Machine Vendor: InTerra Blog Machine Team http://code.google.com/p/interra/ Vulnerable Version: 1.84 and probably prior versions Vendor Notification: 31 March 2011...
InTerra Blog Machine 1.84 - 'subject' HTML Injection
source: https://www.securityfocus.com/bid/47104/info InTerra Blog Machine is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the conte...
Cross-site Request Forgery (CSRF) Vulnerability in InTerra Blog Machine
High-Tech Bridge SA Security Research Lab has discovered vulnerability in InTerra Blog Machine which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF vulnerability in InTerra Blog Machine: CVE-2011-1670 The vulnerability exists due to insufficien...
InTerra Blog Machine <= 1.70 Shell Upload Vulnerability
Exploit for unknown platform in category web applications ======================================================= InTerra Blog Machine Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-1 +...
InTerra Blog Machine 1.70 Shell
====================================== InTerra Blog Machine Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 0 -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-1 + Discovered By : Inj3ct0r + Site : Inj3ct0r.com + support e-mail :...