31 matches found
EUVD-2008-2956
Malware in sbrugna...
EUVD-2006-5496
Malware in sbrugna...
EUVD-2008-2955
Malware in sbrugna...
jaxultrabb <= 2.0 (lfi/xss) Multiple Vulnerabilities
No description provided by source. =============================================================== JaxUltraBB = 2.0 LFI/XSS Multiple Remote Vulnerabilities =============================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH...
JaxUltraBB <= 2.0 Topic Reply Command Execution Exploit
No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo JaxUltraBB v2.0 Topic Reply Command Execution Exploit\r\n; echo by BlackHawk [email protected]\r\n; echo Thanks to rgod for the php code and Marty for the Love\r\n; echo You need a valid Username and Password to get ...
JaxUltraBB <= 2.0 (delete.php) Remote Auto Deface Exploit
No description provided by source. !/usr/bin/php -q -d shortopentag=on ? print ' ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+:...
Cross site scripting
Cross-site scripting XSS vulnerability in viewforum.php in JaxUltraBB JUBB 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the forum parameter...
CVE-2008-2966
Directory traversal vulnerability in viewprofile.php in JaxUltraBB 2.0 and earlier allows remote attackers to read arbitrary local files via a .. dot dot in the user parameter. party information...
CVE-2008-2965
Cross-site scripting XSS vulnerability in viewforum.php in JaxUltraBB JUBB 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the forum parameter...
Directory traversal
Directory traversal vulnerability in viewprofile.php in JaxUltraBB 2.0 and earlier allows remote attackers to read arbitrary local files via a .. dot dot in the user parameter. party information...
CVE-2008-2966
Directory traversal vulnerability in viewprofile.php in JaxUltraBB 2.0 and earlier allows remote attackers to read arbitrary local files via a .. dot dot in the user parameter. party information...
CVE-2008-2965
CVE-2008-2965 is an XSS vulnerability in JaxUltraBB (JUBB) 2.0 and earlier, specifically in viewforum.php via the forum parameter. The issue allows remote attackers to inject arbitrary script/HTML. Affected component: viewforum.php in JUBB; underlying cause is improper handling/encoding of the fo...
CVE-2008-2966
CVE-2008-2966 affects JaxUltraBB 2.0 and earlier. A directory traversal vulnerability exists in viewprofile.php where a crafted .. in the user parameter allows remote attackers to read arbitrary local files. This is the reported impact: unauthorized disclosure of local files. The connected docume...
CVE-2008-2965
Cross-site scripting XSS vulnerability in viewforum.php in JaxUltraBB JUBB 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the forum parameter...
jaxultrabb-lfixss.txt
=============================================================== JaxUltraBB = 2.0 LFI/XSS Multiple Remote Vulnerabilities =============================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...
JaxUltraBB <= 2.0 (LFI/XSS) Multiple Remote Vulnerabilities
No description provided by source. =============================================================== JaxUltraBB = 2.0 LFI/XSS Multiple Remote Vulnerabilities =============================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH...
jaxultrabb 2.0 - Local File Inclusion Cross-Site Scripting
jaxultrabb 2.0 - Local File Inclusion Cross-Site Scripting =============================================================== JaxUltraBB = 2.0 LFI/XSS Multiple Remote Vulnerabilities =============================================================== ,--^----------,--------,-----,-------^--, | |||||||||...
JaxUltraBB <= 2.0 (LFI/XSS) Multiple Remote Vulnerabilities
Exploit for unknown platform in category web applications =========================================================== JaxUltraBB = 2.0 LFI/XSS Multiple Remote Vulnerabilities =========================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------...
jaxultrabb 2.0 - Local File Inclusion / Cross-Site Scripting
=============================================================== JaxUltraBB = 2.0 LFI/XSS Multiple Remote Vulnerabilities =============================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...
CVE-2006-5511
Direct static code injection vulnerability in delete.php in JaxUltraBB JUBB 2.0, when registerglobals is enabled, allows remote attackers to inject arbitrary web script, HTML, or PHP via the contents parameter, whose value is prepended to the file specified by the forum parameter...