39 matches found
EUVD-2009-1610
Malware in sbrugna...
EUVD-2009-1609
Malware in sbrugna...
EUVD-2009-1608
Malware in sbrugna...
File upload vulnerability exists in the Fish Leap CMS (CNVD-2021-41974)
FishLeap CMS is a content management system specifically geared towards enterprise applications. A file upload vulnerability exists in the backend of Fishy CMS, which can be exploited by attackers to gain server control privileges...
Fish Leap CMS has information leakage vulnerability
FishLeap CMS is a content management system specifically geared towards enterprise applications. An information disclosure vulnerability exists in Fish Leap CMS, which can be exploited by attackers to obtain sensitive information...
SQL Injection Vulnerability in Fish Leap CMS
FishLeap CMS is a content management system specifically geared towards enterprise applications. A SQL injection vulnerability exists in Fishy CMS, which can be exploited by attackers to obtain sensitive information from the database...
File Upload Vulnerability in Fish Leap CMS Backend
FishLeap CMS is made up of a content management system that is specifically geared towards enterprise applications. A file upload vulnerability exists in the backend of Fishy CMS. An attacker can exploit the vulnerability to upload a webshell and gain server privileges...
Code Execution Vulnerability in Fish Leap CMS
FishLeap CMS is a content management system specifically geared towards enterprise applications. A code execution vulnerability exists in the Fish Leap CMS, which can be exploited by an attacker to write a malicious file to gain server control privileges...
File Upload Vulnerability in Fish Leap CMS
FishLeap CMS is a content management system specifically geared towards enterprise applications. A file upload vulnerability exists in Fishy CMS, which can be exploited by attackers to upload malicious files to gain server control privileges...
Arbitrary File Read Vulnerability in Fish Leap CMS
FishLeap CMS is a content management system specifically geared towards enterprise applications. Fishy CMS suffers from an arbitrary file read vulnerability, which can be exploited by an attacker to read arbitrary files on the server...
XSS Vulnerability in Fish Leap CMS Frontend at Comments
Fish CMS is a content management system developed by the official Catfish CMS specifically for enterprise applications. An XSS vulnerability exists in the front-end comments of FishCenter CMS, which can be exploited by an attacker to obtain an administrator cookie...
XSS Vulnerability in FishLeap CMS Frontend Comments List
Fish CMS is a content management system developed by the official Catfish CMS specifically for enterprise applications. An XSS vulnerability exists in the front-end comment list of FishCare CMS, which can be exploited by an attacker to obtain an administrator cookie...
leap cms 0.1.4 (sql/xss/su) Multiple Vulnerabilities
No description provided by source. || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ¡VIVA SPAIN!...¡GANAREMOS EL MUNDIAL!...o.O ¡PROUD TO BE SPANISH! --...
CVE-2009-1613
Multiple SQL injection vulnerabilities in leap.php in Leap CMS 0.1.4, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 searchterm or 2 email parameter...
CVE-2009-1615
Unrestricted file upload vulnerability in Leap CMS 0.1.4 allows remote attackers to execute arbitrary code by uploading a file with an executable extension via an admin.system.files aka Manage Files request to the default URI, then accessing the file via a direct request...
Sql injection
Multiple SQL injection vulnerabilities in leap.php in Leap CMS 0.1.4, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 searchterm or 2 email parameter...
CVE-2009-1614
Multiple cross-site scripting XSS vulnerabilities in Leap CMS 0.1.4 allow remote attackers to inject arbitrary web script or HTML via 1 the msg parameter aka the message in an article comment or 2 the searchterm parameter aka the search post form. NOTE: some of these details are obtained from thi...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Leap CMS 0.1.4 allow remote attackers to inject arbitrary web script or HTML via 1 the msg parameter aka the message in an article comment or 2 the searchterm parameter aka the search post form. NOTE: some of these details are obtained from thi...
Unrestricted file upload
Unrestricted file upload vulnerability in Leap CMS 0.1.4 allows remote attackers to execute arbitrary code by uploading a file with an executable extension via an admin.system.files aka Manage Files request to the default URI, then accessing the file via a direct request...
CVE-2009-1614
CVE-2009-1614 refers to multiple cross-site scripting (XSS) vulnerabilities in Leap CMS 0.1.4, allowing remote attackers to inject arbitrary web script or HTML via the msg parameter (article comment message) or the searchterm parameter (search form). The vulnerability details come from multiple s...