29 matches found
EUVD-2008-2189
Malware in sbrugna...
EUVD-2009-0497
Malware in sbrugna...
EUVD-2007-4099
Malware in sbrugna...
COMpose-IT CMS 2.0 SQL Injection
==================================================================================================================================== | Title : COMpose-IT CMS v2.0 SQL injection Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 68.032-bit | ...
COMpose-IT CMS 2.0 Insecure Settings
==================================================================================================================================== | Title : COMpose-IT CMS v2.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 68.032-bi...
BM IT CMS 1.0 Insecure Settings
==================================================================================================================================== | Title : BM IT CMS v1.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 69.032-bit | |...
IT!CMS 0.2 titletext-ed.php wndtitle Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/25129/info IT!CMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage these issues...
IT!CMS 0.2 lang-en.php wndtitle Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/25129/info IT!CMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage these issues...
IT!CMS 0.2 menu-ed.php wndtitle Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/25129/info IT!CMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage these issues...
Power-IT CMS Cross Site Scripting
Exploit Title: Power-IT Cms Cross Site Scripting Vulnerability Google Dork: intext:"Powered by PowerIT" Date: 08/24/2012 Author: Crim3R Vendor Home : http://www.poweritschools.com/ Tested on: all ====================================== POST DATA /Host: www.ceca-ct.org User-Agent: Mozilla/5.0 Windo...
CVE-2009-0493
SQL injection vulnerability in login.php in IT!CMS 2.1a and earlier allows remote attackers to execute arbitrary SQL commands via the Username...
Sql injection
SQL injection vulnerability in login.php in IT!CMS 2.1a and earlier allows remote attackers to execute arbitrary SQL commands via the Username...
CVE-2009-0493
SQL injection vulnerability in login.php in IT!CMS 2.1a and earlier allows remote attackers to execute arbitrary SQL commands via the Username...
CVE-2009-0493
The CVE-2009-0493 entry describes a SQL injection in IT!CMS before or at 2.1a, affecting login.php via the Username parameter and allowing remote execution of arbitrary SQL. NVD lists a base score of 7.5 (HIGH) with network access, low attack complexity and no authentication required. The connect...
IT!CMS SQL Injection Authentication Bypass
. . . / | || | / / || | / / \ \ \ \ | |/ \ / |/ \ \ \ | \ \ \ /| | /| | / | | | / // \ / / | | | Y \ \ | || /|| /\ |\ /| || / / / / / / / / / --++++++-- --+++ IT!CMS = vers. SQL Injection Vulnerability +++-- --++++++-- + Discovered by: certaindeath + Exploit: simple SQL injection +...
Code injection
Static code injection vulnerability in box/minichat/boxpop.php in IT!CMS aka itcms 1.9 allows remote attackers to inject arbitrary PHP code into box/MiniChat/data/shouts.php via the shout parameter...
CVE-2008-2192
Static code injection vulnerability in box/minichat/boxpop.php in IT!CMS aka itcms 1.9 allows remote attackers to inject arbitrary PHP code into box/MiniChat/data/shouts.php via the shout parameter...
CVE-2008-2192
Static code injection vulnerability in box/minichat/boxpop.php in IT!CMS aka itcms 1.9 allows remote attackers to inject arbitrary PHP code into box/MiniChat/data/shouts.php via the shout parameter...
CVE-2008-2192
CVE-2008-2192 affects IT!CMS (aka itcms) 1.9, specifically the box/minichat/boxpop.php component. The root cause is a static code injection vulnerability that allows remote attackers to inject arbitrary PHP code into box/MiniChat/data/shouts.php via the shout parameter. Connected sources consiste...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in IT!CMS itcms 0.2 allow remote attackers to inject arbitrary web script or HTML via the wndtitle parameter to 1 lang-en.php, 2 menu-ed.php, or 3 titletext-ed.php...