54 matches found
EUVD-2010-0736
Malware in sbrugna...
EUVD-2012-5265
Malware in sbrugna...
EUVD-2009-4686
Malware in sbrugna...
EUVD-2011-5110
Malware in sbrugna...
Limny 2.2 Expression Language Injection
======================================================================== | Title : limny 2.2 Expression language injection vulnerability | Author : indoushka | email : [email protected] | Tested on : windows 8.1 FranASSais V.Pro | Version : 2.2 | Vendor : http://www.limny.org/ | Dork : n/a...
Limny 3.2.2 Local File Inclusion
======================================================================== | Title : limny 3.2.2 Local File Inclusion vulnerability | Author : indoushka | email : [email protected] | Tested on : windows 8.1 FranASSais V.Pro | Version : 3.2.2 | Vendor : http://www.limny.org/ | Dork : n/a...
Limny 3.0.2 Local File Inclusion
======================================================================== | Title : limny 3.0.2 Local File Inclusion vulnerability | Author : indoushka | email : [email protected] | Tested on : windows 8.1 FranASSais V.Pro | Version : 3.0.2 | Vendor : http://www.limny.org/ | Dork : n/a...
Limny 2.0 Change Email and Password - CSRF Exploit
No description provided by source...
Limny 2.0 - Create Admin User CSRF Exploit
No description provided by source...
Limny 1.01 - Remote File Upload Vulnerability
No description provided by source. ----------exploit Debut Remote File Upload Vulnerability ----------Script Info Moi : JIKO Site : No-exploit.Com Email : : ----------Script Info Site:http : limny.org ----------exploit Info 13 Action the first setup register if the register active...
Limny admin/preview.php theme Parameter Directory Traversal Vulnerability
Limny is prone to a directory traversal vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:limny:limny"; ifdescriptio...
Limny 'login.php' Script XSS Vulnerability
Limny is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:limny:limny";...
CVE-2011-5210
Directory traversal vulnerability in admin/preview.php in Limny 3.0.0 allows remote attackers to read arbitrary files via a ..%2F encoded dot dot slash in the theme parameter...
CVE-2012-5343
Cross-site scripting XSS vulnerability in admin/login.php in Limny 3.0.1 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO, related to the "PHPSELF" variable...
Directory traversal
Directory traversal vulnerability in admin/preview.php in Limny 3.0.0 allows remote attackers to read arbitrary files via a ..%2F encoded dot dot slash in the theme parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in admin/login.php in Limny 3.0.1 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO, related to the "PHPSELF" variable...
CVE-2011-5210
CVE-2011-5210 affects Limny 3.0.0, where a directory traversal is possible in admin/preview.php via the theme parameter (encoded ..%2F) to read arbitrary files. Multiple sources (NVD, OpenVAS) confirm the vulnerability and link to Limny 3.0.0 players; OpenVAS describes it as a global directory tr...
CVE-2012-5343
Limny 3.0.1 admin/login.php is vulnerable to Cross‑Site Scripting via PATH_INFO (PHP_SELF). OpenVAS confirms a Limny XSS issue; no explicit patch/fix details are provided in the supplied documents. A Limny 3.0.2.x release is referenced, but no confirmed remediation is stated here.
CVE-2012-5343
Cross-site scripting XSS vulnerability in admin/login.php in Limny 3.0.1 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO, related to the "PHPSELF" variable...
Limny - 'index.php' Multiple SQL Injections
source: https://www.securityfocus.com/bid/54753/info Limny is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. A successful exploit may allow an attacker to compromise the application, access or modify...