71 matches found
CVE-2006-3883
Multiple cross-site scripting XSS vulnerabilities in Gonafish LinksCaffe 3.0 allow remote attackers to inject arbitrary web script or HTML via 1 the tablewidth parameter in a counter.php; 2 the newdays parameter in b links.php; and the 3 tableborder, 4 menucolor, 5 textcolor, and 6 bodycolor...
Woltlab Burning Board < 2.3.5 links.php cat Parameter SQL Injection
Binary data 3631.prm...
CVE-2006-2569
SQL injection vulnerability in links.php in 4R Linklist 1.0 RC2 and earlier, a module for Woltlab Burning Board, allows remote attackers to execute arbitrary SQL commands via the cat parameter...
Woltlab Burning Board <= 2.3.5 (links.php) SQL Injection Exploit
Exploit for unknown platform in category web applications ================================================================ Woltlab Burning Board newProto="tcp", PeerAddr=...
Woltlab Burning Board 2.3.5 - 'links.php' SQL Injection
!/usr/bin/perl use IO::Socket; print q Woltlab Burning Board 2.3.4 newProto="tcp", PeerAddr="$webpage", PeerPort="80" || die "+ Can't connect to Server\n"; print "+ Exploiting....\n"; print $sock "GET $wbbdir HTTP/1.1\n"; print $sock "Accept: /\n"; print $sock "User-Agent: Hacker\n"; print $sock...
CVE-2006-1796
WordPress 1.5.2 (and possibly earlier than 2.0.1) is affected by an XSS in the paging links (template-functions-links.php). The vulnerability allows remote attackers to inject arbitrary script/HTML into IE users via the request URI ($_SERVER['REQUEST_URI']). Impact is cross-site scripting with pa...
CVE-2005-4460
Cross-site scripting XSS vulnerability in Beehive Forum 0.6.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the 1 Name, 2 Description, and 3 Comment fields to a links.php and b linksadd.php...
CVE-2005-4460
Beehive Forum before or at version 0.6.2 is affected by a cross-site scripting (XSS) vulnerability in links.php and links_add.php. The issue allows remote attackers to inject arbitrary web script or HTML via the Name, Description, and Comment fields. The CVE-2005-4460 description in the provided ...
CVE-2005-1804
Multiple SQL injection vulnerabilities in Net Portal Dynamic System NPDS 5.0 allow remote attackers to execute arbitrary SQL commands via the 1 terme parameter in the glossaire module glossaire.php or 2 query parameter to links.php...
myphpnuke xss
Vendor: http://www.myphpnuke.com Subject: myphpnuke links.php vulnerability myphpnuke is a website portal tool written in php. There are many Cross Site Scripting issue on myphpnuke . Example: http://WEB/myphpnuke/links.php?op=MostPopular&ratenum=scr!ptalertdocument.cookie;/scr!pt&ratetype=percen...
myPHPNuke 1.8.8 - 'links.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/6892/info Reportedly, myPHPNuke 'links.php' does not adequately filter HTML code thus making it prone to cross-site scripting attacks. It is possible for a remote attacker to create a malicious link containing script code that will be executed in the...