48 matches found
EUVD-2005-2885
Malware in sbrugna...
EUVD-2005-2841
Malware in sbrugna...
EUVD-2005-2886
Malware in sbrugna...
EUVD-2006-5549
Malware in sbrugna...
EUVD-2005-2887
Malware in sbrugna...
EUVD-2006-5550
Malware in sbrugna...
EUVD-2005-2840
Malware in sbrugna...
CVE-2005-2840
Multiple unknown vulnerabilities in MAXdev MD-Pro 1.0.72 and earlier have unknown impact and unspecified attack vectors, in one or more of the 1 Download, 2 Search, 3 Web links, 4 Blocks, 5 Messages, 6 News, 7 Comments, 8 Settings, 9 Stats or 10 subjects modules...
CVE-2005-2839
Multiple cross-site scripting XSS vulnerabilities in MAXdev MD-Pro 1.0.72 allow remote attackers to inject arbitrary web script or HTML via 1 dl-search.php or 2 wl-search.php...
SUSE CVE-2006-0147
Dynamic code evaluation vulnerability in tests/tmssql.php test script in ADOdb for PHP before 4.70, as used in multiple products including 1 Mantis, 2 PostNuke, 3 Moodle, 4 Cacti, 5 Xaraya, 6 PhpOpenChat, possibly 7 MAXdev MD-Pro, and 8 Simplog, allows remote attackers to execute arbitrary PHP...
MAXdev MD-Pro 1.0.76 User.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20752/info MAXdev MD-Pro is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser...
MAXdev MD-Pro 1.0.73 Multiple Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/14751/info MAXdev MD-Pro is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issu...
MAXdev MD-Pro 1.0.73 Arbitrary Remote File Upload Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/14750/info MAXdev MD-Pro is prone to an arbitrary remote file upload vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. This issue is due to a design error in the...
CVE-2006-5564
Cross-site scripting XSS vulnerability in user.php in MAXdev MD-Pro 1.0.76 allows remote attackers to inject arbitrary web script or HTML via the op parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information...
CVE-2006-5565
CRLF injection vulnerability in MAXdev MD-Pro 1.0.76 allows remote attackers to inject arbitrary HTTP headers via a CRLF sequence in the 1 name, 2 file, 3 module, and 4 func parameters in a index.php; and the 5 file parameter in b modules.php. NOTE: the provenance of this information is unknown;...
CVE-2006-5564
Cross-site scripting XSS vulnerability in user.php in MAXdev MD-Pro 1.0.76 allows remote attackers to inject arbitrary web script or HTML via the op parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information...
CVE-2006-5564
CVE-2006-5564 is an XSS vulnerability in MAXdev MD-Pro 1.0.76, exploitable via the op parameter in user.php. The issue allows remote attackers to inject arbitrary web script/HTML. The NVD record lists a base score of 4.3 (Medium) with Network attack vector, no confidentiality impact, partial inte...
CVE-2006-5565
CRLF injection vulnerability in MAXdev MD-Pro 1.0.76 allows remote attackers to inject arbitrary HTTP headers via a CRLF sequence in the 1 name, 2 file, 3 module, and 4 func parameters in a index.php; and the 5 file parameter in b modules.php. NOTE: the provenance of this information is unknown;...
CVE-2006-5565
CVE-2006-5565 concerns a CRLF injection vulnerability in MAXdev MD-Pro 1.0.76. The flaw allows remote attackers to inject arbitrary HTTP headers by inserting a CRLF sequence into parameters (name, file, module, func) in index.php and the file parameter in modules.php. The accompanying data notes ...
MAXdev MD-Pro 1.0.76 - user.php Cross-Site Scripting
MAXdev MD-Pro 1.0.76 - user.php Cross-Site Scripting MAXdev MD-Pro is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in the...