Lucene search
+L

20 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2007-1480

Malware in sbrugna...

10CVSS6.4AI score0.02872EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-3611

Malware in sbrugna...

4.3CVSS6.4AI score0.02433EPSS
Exploits1References10
Vulnerability Lab
Vulnerability Lab
added 2015/01/15 12:0 a.m.15 views

CatBot v0.4.2 (PHP) - SQL Injection Vulnerability

Document Title: =============== CatBot v0.4.2 PHP - SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1408 Release Date: ============= 2015-01-15 Vulnerability Laboratory ID VL-ID: ==================================== 1408 Commo...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2014/12/29 12:0 a.m.142 views

Lazarus Guestbook v1.22 - Multiple Web Vulnerabilities

Document Title: =============== Lazarus Guestbook v1.22 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1386 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-2239 CVE-ID: ======= CVE-2014-2239 Release Date:...

6.3AI score
Exploits6
Packet Storm
Packet Storm
added 2014/12/26 12:0 a.m.39 views

Lazarus Guestbook 1.22 XSS / SQL Injection

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= INDEPENDENT SECURITY RESEARCHER PENETRATION TESTING SECURITY -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Exploit Title: Lazarus Guestbook 1.22 Multiple Persistent Cross-Site Scripting - Sql Injection Vulnerability Date: 23/12/2014 Url Vendor:...

0.2AI score
Exploits6
Vulnerability Lab
Vulnerability Lab
added 2014/12/24 12:0 a.m.32 views

Lazarus Guestbook v1.22 - Multiple Web Vulnerabilities

Document Title: =============== Lazarus Guestbook v1.22 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1386 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-2239 CVE-ID: ======= CVE-2014-2239 Release Date:...

6.5AI score
Exploits6
Vulnerability Lab
Vulnerability Lab
added 2014/12/24 12:0 a.m.25 views

Lazarus Guestbook v1.22 - Multiple Web Vulnerabilities

Document Title: =============== Lazarus Guestbook v1.22 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1386 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-2239 CVE-ID: ======= CVE-2014-2239 Release Date:...

6.5AI score
Exploits6
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.189 views

Lazarus Guestbook 1.6 codes-english.php show Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/18956/info Lazarus Guestbook is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.12 views

Lazarus Guestbook 1.6 picture.php img Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/18956/info Lazarus Guestbook is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute...

7.1AI score
Exploits0
Prion
Prion
added 2007/03/16 9:19 p.m.13 views

Remote file inclusion

PHP remote file inclusion vulnerability in template.class.php in Carbonize Lazarus Guestbook before 1.7.3 allows remote attackers to execute arbitrary PHP code via a URL in the includepath parameter to admin.php, probably due to a dynamic variable evaluation vulnerability...

10CVSS8AI score0.02872EPSS
Exploits0References8Affected Software1
NVD
NVD
added 2007/03/16 9:19 p.m.14 views

CVE-2007-1486

PHP remote file inclusion vulnerability in template.class.php in Carbonize Lazarus Guestbook before 1.7.3 allows remote attackers to execute arbitrary PHP code via a URL in the includepath parameter to admin.php, probably due to a dynamic variable evaluation vulnerability...

10CVSS7.5AI score0.02872EPSS
Exploits0References8
CVE
CVE
added 2007/03/16 9:0 p.m.53 views

CVE-2007-1486

CVE-2007-1486 describes a PHP remote file inclusion in Carbonize Lazarus Guestbook prior to version 1.7.3. The vulnerability is triggered in template.class.php when processing include_path in admin.php, due to a dynamic variable evaluation vulnerability, allowing an attacker to execute arbitrary ...

10CVSS7.5AI score0.02872EPSS
Exploits0References8Affected Software1
securityvulns
securityvulns
added 2007/03/09 12:0 a.m.37547 views

Lazarus Guestbook (admin.php)Remote File Include Expliot

Lazarus Guestbook admin.phpRemote File Include Expliot D.Script: http://www.carbonize.co.uk Dork: "Powered by Lazarus Guestbook from carbonize.co.uk" Discovered by Crackman Homepage: http://www.b0rizq.biz Greetz To :B0rizq & redcasper & Draknaz kaiba & brokenproxy and all freind Exploit:...

0.6AI score
Exploits0
CVE
CVE
added 2006/07/14 9:0 p.m.54 views

CVE-2006-3616

CVE-2006-3616 : The provided records indicate multiple cross-site scripting (XSS) vulnerabilities in Carbonize Lazarus Guestbook 1.6 and earlier. The issues allow remote attackers to inject arbitrary web script or HTML via (1) the show parameter in codes-english.php and (2) the img parameter in p...

4.3CVSS6AI score0.02433EPSS
Exploits1References9Affected Software1
Packet Storm
Packet Storm
added 2006/07/13 12:0 a.m.29 views

lazarus16.txt

Produce : Lazarus Guestbook Website : http://carbonize.co.uk/Lazarus/ Version : 2 3 4 Exploit : http://localhost/lazarusgb/lang/codes-english.php?show=%3C/title%3EXSS http://localhost/lazarusgb/lang/codes-english.php?show=%3C/title%3Ealertdocument.cookie; 2 the seconde probleme is in picture.php ...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/07/13 12:0 a.m.91 views

Lazarus Guestbook Cross Site Scripting Vulnerabilities

Produce : Lazarus Guestbook Website : http://carbonize.co.uk/Lazarus/ Version : = 1.6 Problem : Cross Site Scripting 1 The first probleme is in codes-english.php ,"show" parameter in lang/codes-english.php isn't properly sanitised This can be exploited to execute arbitrary HTML and javascript cod...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2006/07/12 12:0 a.m.13 views

Lazarus Guestbook 1.6 - codes-english.php?show Cross-Site Scripting

Lazarus Guestbook 1.6 - codes-english.php?show Cross-Site Scripting source: https://www.securityfocus.com/bid/18956/info Lazarus Guestbook is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2006/07/12 12:0 a.m.14 views

Lazarus Guestbook 1.6 - picture.php?img Cross-Site Scripting

Lazarus Guestbook 1.6 - picture.php?img Cross-Site Scripting source: https://www.securityfocus.com/bid/18956/info Lazarus Guestbook is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have...

Exploits0
Exploit DB
Exploit DB
added 2006/07/12 12:0 a.m.24 views

Lazarus Guestbook 1.6 - 'picture.php?img' Cross-Site Scripting

source: https://www.securityfocus.com/bid/18956/info Lazarus Guestbook is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2006/07/12 12:0 a.m.29 views

Lazarus Guestbook 1.6 - 'codes-english.php?show' Cross-Site Scripting

source: https://www.securityfocus.com/bid/18956/info Lazarus Guestbook is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting...

7AI score
Exploits0
Rows per page
Query Builder