EUVD-2006-3378

Malware in sbrugna...

EUVD-2006-3379

Malware in sbrugna...

CVE-2006-3382

Cross-site scripting XSS vulnerability in search.php in mAds 1.0 allows remote attackers to inject arbitrary web script or HTML via the "search string"...

CVE-2006-3382

CVE-2006-3382 is a cross-site scripting (XSS) vulnerability in the search.php component of mAds 1.0 , exploitable via the search string parameter. According to the records, remote attackers can inject arbitrary web script or HTML. The NVD metrics indicate a Medium base score (4.3) with network at...

CVE-2006-3382

Cross-site scripting XSS vulnerability in search.php in mAds 1.0 allows remote attackers to inject arbitrary web script or HTML via the "search string"...

CVE-2006-3383

CVE-2006-3383 is a cross-site scripting (XSS) vulnerability in the index.php file of mAds 1.0. The issue allows remote attackers to inject arbitrary web script or HTML by crafting a URL that triggers Javascript events (e.g., onmouseover). The NVD-derived vector indicates an attack with network ac...

mAds10.txt

mAds v1.0 Homepage: http://lowpricescripts.com/productinfo.php?productsid=51 Affected files: Searching ----------------------------------- XSS vuln when searching: Like the hotbot XSS vuln, when searching mAds returns with its results they are generated dynamically on screen, with no filtering at...