EUVD-2008-0694

Malware in sbrugna...

EUVD-2014-1051

Malware in sbrugna...

EUVD-2008-0695

Malware in sbrugna...

CVE-2008-0684

Cross-site scripting XSS vulnerability in ViewCat.php in iTechClassifieds 3.0 allows remote attackers to inject arbitrary web script or HTML via the CatID parameter...

CVE-2008-0685

SQL injection vulnerability in ViewCat.php in iTechClassifieds 3.0 allows remote attackers to execute arbitrary SQL commands via the CatID parameter...

Sql injection

SQL injection vulnerability in ChangeEmail.php in iTechClassifieds 3.03.057 allows remote attackers to execute arbitrary SQL commands via the PreviewNum parameter. NOTE: the CatID parameter is already covered by CVE-2008-0685...

CVE-2014-100020

SQL injection vulnerability in ChangeEmail.php in iTechClassifieds 3.03.057 allows remote attackers to execute arbitrary SQL commands via the PreviewNum parameter. NOTE: the CatID parameter is already covered by CVE-2008-0685...

CVE-2014-100020

CVE-2014-100020 describes an SQL injection in ChangeEmail.php of iTechClassifieds 3.03.057, allowing remote attackers to execute arbitrary SQL commands via the PreviewNum parameter. The CatID parameter vulnerability is noted as covered by a separate CVE (CVE-2008-0685). The provided documents con...

iTechClassifieds 3.03.057 - SQL Injection

No description provided by source. Exploit Title: iTechClassifieds v3.03.057 - SQL Injection Date: 23/01/2014 Exploit Author: vinicius777 Vendor Homepage: http://itechscripts.com/download.html Software Link: http://itechscripts.com/downloads/downloaditechclassifieds.html Version: 3.03.057 1 SQL...

ITechClassifieds ViewCat.php CatID Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/27574/info iTechClassifieds is prone to an input-validation vulnerability that may be exploited as a cross-site scripting issue or an SQL-injection issue. This issue occurs because the application fails to adequately...

ITechClassifieds ViewCat.php CatID Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/27574/info iTechClassifieds is prone to an input-validation vulnerability that may be exploited as a cross-site scripting issue or an SQL-injection issue. This issue occurs because the application fails to adequately...

iTechClassifieds 3.03.057 SQL注入漏洞

漏洞起因 输入验证错误 影响系统 iTechClassifieds v3.03.057 危害 远程攻击者可以利用漏洞在 ChangeEmail.php 和 ViewCat.php 页面进行SQL注入攻击，可获得敏感信息或操作数据库。 攻击所需条件 攻击者构造特殊输入访问 iTechClassifieds 。 漏洞信息 iTechClassifieds 不正确处理用户输入，远程攻击者可以利用漏洞进行SQL注入攻击，获得敏感信息。 问题存在于 ChangeEmail.php 和 ViewCat.php 脚本中，由于对 PreviewNum 参数 和 CatID...

iTechClassifieds 3.03.057 SQL Injection

Exploit Title: iTechClassifieds v3.03.057 - SQL Injection Date: 23/01/2014 Exploit Author: vinicius777 Vendor Homepage: http://itechscripts.com/download.html Software Link: http://itechscripts.com/downloads/downloaditechclassifieds.html Version: 3.03.057 1 SQL Injection - PreviewNun PoC:...

iTechClassifieds 3.03.057 - SQL Injection

iTechClassifieds 3.03.057 - SQL Injection Exploit Title: iTechClassifieds v3.03.057 - SQL Injection Date: 23/01/2014 Exploit Author: vinicius777 Vendor Homepage: http://itechscripts.com/download.html Software Link: http://itechscripts.com/downloads/downloaditechclassifieds.html Version: 3.03.057 ...

iTechClassifieds 3.03.057 - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: iTechClassifieds v3.03.057 - SQL Injection Date: 23/01/2014 Exploit Author: vinicius777 Vendor Homepage: http://itechscripts.com/download.html Software Link: http://itechscripts.com/downloads/downloaditechclassifieds.html Versio...

iTechClassifieds 3.03.057 - SQL Injection

Exploit Title: iTechClassifieds v3.03.057 - SQL Injection Date: 23/01/2014 Exploit Author: vinicius777 Vendor Homepage: http://itechscripts.com/download.html Software Link: http://itechscripts.com/downloads/downloaditechclassifieds.html Version: 3.03.057 1 SQL Injection - PreviewNun PoC:...

CVE-2008-0684

Cross-site scripting XSS vulnerability in ViewCat.php in iTechClassifieds 3.0 allows remote attackers to inject arbitrary web script or HTML via the CatID parameter...

Sql injection

SQL injection vulnerability in ViewCat.php in iTechClassifieds 3.0 allows remote attackers to execute arbitrary SQL commands via the CatID parameter...

CVE-2008-0685

SQL injection vulnerability in ViewCat.php in iTechClassifieds 3.0 allows remote attackers to execute arbitrary SQL commands via the CatID parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in ViewCat.php in iTechClassifieds 3.0 allows remote attackers to inject arbitrary web script or HTML via the CatID parameter...