kaibb 1.0.1 - Multiple Vulnerabilities

No description provided by source. Vulnerability ID: HTB22749 Reference: http://www.htbridge.ch/advisory/bbcodexssinkaibb.html Product: KaiBB Vendor: Mi-Dia http://www.mi-dia.co.uk/ Vulnerable Version: 1.0.1 Vendor Notification: 09 December 2010 Vulnerability Type: BBcode XSS Status: Not Fixed,...

KaiBB 2.0.1 - SQL Injection vulnerability

No description provided by source. Advisory: KaiBB 2.0.1 XSS and SQL Injection vulnerabilities Advisory ID: SSCHADV2011-027 Author: Stefan Schurtz Affected Software: Successfully tested on KaiBB 2.0.1 Vendor URL: http://code.google.com/p/kaibb/ Vendor Status: informed CVE-ID: -...

KaiBB 2.0.1 XSS and SQL Injection vulnerabilities

Advisory: KaiBB 2.0.1 XSS and SQL Injection vulnerabilities Advisory ID: SSCHADV2011-027 Author: Stefan Schurtz Affected Software: Successfully tested on KaiBB 2.0.1 Vendor URL: http://code.google.com/p/kaibb/ Vendor Status: informed CVE-ID: - ========================== Vulnerability Description...

KaiBB 2.0.1 Cross Site Scripting / SQL Injection

Advisory: KaiBB 2.0.1 XSS and SQL Injection vulnerabilities Advisory ID: SSCHADV2011-027 Author: Stefan Schurtz Affected Software: Successfully tested on KaiBB 2.0.1 Vendor URL: http://code.google.com/p/kaibb/ Vendor Status: informed CVE-ID: - ========================== Vulnerability Description:...

KaiBB 2.0.1 - SQL Injection

KaiBB 2.0.1 - SQL Injection Advisory: KaiBB 2.0.1 XSS and SQL Injection vulnerabilities Advisory ID: SSCHADV2011-027 Author: Stefan Schurtz Affected Software: Successfully tested on KaiBB 2.0.1 Vendor URL: http://code.google.com/p/kaibb/ Vendor Status: informed CVE-ID: - =========================...

KaiBB 2.0.1 - SQL Injection

Advisory: KaiBB 2.0.1 XSS and SQL Injection vulnerabilities Advisory ID: SSCHADV2011-027 Author: Stefan Schurtz Affected Software: Successfully tested on KaiBB 2.0.1 Vendor URL: http://code.google.com/p/kaibb/ Vendor Status: informed CVE-ID: - ========================== Vulnerability Description:...

KaiBB 2.0.1 SQL Injection vulnerability

Exploit for php platform in category web applications Author: Stefan Schurtz Affected Software: Successfully tested on KaiBB 2.0.1 Vendor URL: http://code.google.com/p/kaibb/ Vendor Status: informed CVE-ID: - ========================== Vulnerability Description: ========================== KaiBB...

KaiBB 2.0.1 - SQL Injection Arbitrary File Upload

KaiBB 2.0.1 - SQL Injection Arbitrary File Upload source: https://www.securityfocus.com/bid/49421/info KaiBB is prone to multiple SQL-injection vulnerabilities and a arbitrary-file-upload vulnerability because it fails to sanitize user-supplied data. Exploiting these issues could allow an attacke...

KaiBB 2.0.1 - SQL Injection / Arbitrary File Upload

source: https://www.securityfocus.com/bid/49421/info KaiBB is prone to multiple SQL-injection vulnerabilities and a arbitrary-file-upload vulnerability because it fails to sanitize user-supplied data. Exploiting these issues could allow an attacker to compromise the application, execute arbitrary...

KaiBB 2.0.1 <= Multiple (SQL Injection / FU) Vulnerabilities

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

KaiBB 2.0.1 SQL Injection / Shell Upload

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...

HTB22793: XSRF &#40;CSRF&#41; in KaiBB

Vulnerability ID: HTB22793 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinkaibb.html Product: KaiBB Vendor: Mi-Dia http://www.kaibb.co.uk/ Vulnerable Version: 1.0.2 and probably prior versions Vendor Notification: 13 January 2011 Vulnerability Type: CSRF Cross-Site Request Forgery Status:...

KaiBB 1.0.2 Cross Site Request Forgery

Vulnerability ID: HTB22793 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinkaibb.html Product: KaiBB Vendor: Mi-Dia http://www.kaibb.co.uk/ Vulnerable Version: 1.0.2 and probably prior versions Vendor Notification: 13 January 2011 Vulnerability Type: CSRF Cross-Site Request Forgery Status:...

Cross-site Request Forgery (CSRF) in KaiBB

High-Tech Bridge SA Security Research Lab has discovered vulnerability in KaiBB which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF in KaiBB The vulnerability exists due to insufficient validation of the request origin in admin/core/account.ph...

KaiBB 1.0.1 Multiple Vulnerabilities

Exploit for php platform in category web applications Vulnerability ID: HTB22749 Reference: http://www.htbridge.ch/advisory/bbcodexssinkaibb.html Product: KaiBB Vendor: Mi-Dia http://www.mi-dia.co.uk/ Vulnerable Version: 1.0.1 Vendor Notification: 09 December 2010 Vulnerability Type: BBcode XSS...

kaibb 1.0.1 - Multiple Vulnerabilities

kaibb 1.0.1 - Multiple Vulnerabilities Vulnerability ID: HTB22749 Reference: http://www.htbridge.ch/advisory/bbcodexssinkaibb.html Product: KaiBB Vendor: Mi-Dia http://www.mi-dia.co.uk/ Vulnerable Version: 1.0.1 Vendor Notification: 09 December 2010 Vulnerability Type: BBcode XSS Status: Not Fixe...

kaibb 1.0.1 - Multiple Vulnerabilities

Vulnerability ID: HTB22749 Reference: http://www.htbridge.ch/advisory/bbcodexssinkaibb.html Product: KaiBB Vendor: Mi-Dia http://www.mi-dia.co.uk/ Vulnerable Version: 1.0.1 Vendor Notification: 09 December 2010 Vulnerability Type: BBcode XSS Status: Not Fixed, Vendor Alerted, Awaiting Vendor...

KaiBB 1.0.1 Cross Site Scripting / Path Disclosure / SQL Injection

=================================== Vulnerability ID: HTB22749 Reference: http://www.htbridge.ch/advisory/bbcodexssinkaibb.html Product: KaiBB Vendor: Mi-Dia http://www.mi-dia.co.uk/ Vulnerable Version: 1.0.1 Vendor Notification: 09 December 2010 Vulnerability Type: BBcode XSS Status: Not Fixed,...

Path disclosure in KaiBB

Vulnerability ID: HTB22746 Reference: http://www.htbridge.ch/advisory/pathdisclosureinkaibb.html Product: KaiBB Vendor: Mi-Dia http://www.mi-dia.co.uk/ Vulnerable Version: 1.0.1 Vendor Notification: 09 December 2010 Vulnerability Type: Path disclosure Status: Not Fixed, Vendor Alerted, Awaiting...

SQL injection in KaiBB

Vulnerability ID: HTB22748 Reference: http://www.htbridge.ch/advisory/sqlinjectioninkaibb1.html Product: KaiBB Vendor: Mi-Dia http://www.mi-dia.co.uk/ Vulnerable Version: 1.0.1 Vendor Notification: 09 December 2010 Vulnerability Type: SQL Injection Status: Not Fixed, Vendor Alerted, Awaiting Vend...