2 matches found
CVE-2006-0934
CVE-2006-0934 describes a cross-site scripting (XSS) vulnerability in webinsta Limbo 1.0.4.2. The flaw allows remote attackers to inject arbitrary web script or HTML via the message field in the Contact Form. The available sources confirm the vulnerability but do not provide explicit exploit deta...
Limbo 1.0.4.2 - '_SERVER[REMOTE_ADDR]' Remote Command Execution
this works wtih registerglobals off & regardless of magicquotesgpc settings usage: launch from Apache, fill in requested fields, then go! Sun-Tzu: "Humble words and increased preparations are signs that the enemy is about to advance. Violent language and driving forward as if to the attack are...