72 matches found
EUVD-2005-2841
Malware in sbrugna...
EUVD-2006-7094
Malware in sbrugna...
EUVD-2005-2885
Malware in sbrugna...
EUVD-2006-5549
Malware in sbrugna...
EUVD-2005-2886
Malware in sbrugna...
EUVD-2006-5550
Malware in sbrugna...
EUVD-2005-2887
Malware in sbrugna...
EUVD-2005-2840
Malware in sbrugna...
CVE-2005-2840
Multiple unknown vulnerabilities in MAXdev MD-Pro 1.0.72 and earlier have unknown impact and unspecified attack vectors, in one or more of the 1 Download, 2 Search, 3 Web links, 4 Blocks, 5 Messages, 6 News, 7 Comments, 8 Settings, 9 Stats or 10 subjects modules...
CVE-2005-2839
Multiple cross-site scripting XSS vulnerabilities in MAXdev MD-Pro 1.0.72 allow remote attackers to inject arbitrary web script or HTML via 1 dl-search.php or 2 wl-search.php...
MD-Pro 1.0.76 Shell Upload / SQL Injection Vulnerability
Exploit Title: MD-Pro 1.0.76. SQL injection + shell upload Google Dork: intext: Powered by MD-Pro Exploit Author: Emiliano Febbi Vendor Homepage: https://www.opensourcecms.com/wp-content/uploads/MDPro-website-description.png Software Link: https://www.opensourcecms.com/mdpro/ Version: 1.0.76...
MD-Pro 1.0.76 Shell Upload / SQL Injection
Exploit Title: MD-Pro 1.0.76. SQL injection + shell upload Google Dork: intext: Powered by MD-Pro Date: 2024-08-30 Exploit Author: Emiliano Febbi Vendor Homepage: https://www.opensourcecms.com/wp-content/uploads/MDPro-website-description.png Software Link: https://www.opensourcecms.com/mdpro/...
SUSE CVE-2006-0147
Dynamic code evaluation vulnerability in tests/tmssql.php test script in ADOdb for PHP before 4.70, as used in multiple products including 1 Mantis, 2 PostNuke, 3 Moodle, 4 Cacti, 5 Xaraya, 6 PhpOpenChat, possibly 7 MAXdev MD-Pro, and 8 Simplog, allows remote attackers to execute arbitrary PHP...
@corex/argon-theme (>=1.1.1 <=1.1.33), @creative-tim-official/argon-dashboard-free (=1.2.0) +14 more potentially affected by CVE-2016-1000227 via bootstrap-tagsinput (=0.7.1)
bootstrap-tagsinput NPM version =0.7.1 is affected by a known vulnerability. The following packages have a transitive dependency on bootstrap-tagsinput and may be impacted: - @corex/argon-theme =1.1.1, =0.27.0, =0.0.1, =0.1.0, =3.0.0, =1.2.0, =0.1.0, =0.2.0, =0.1.1, =1.2.6, =1.4.0, =0.1.89, =0.2....
MAXdev MD-Pro 1.0.76 User.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20752/info MAXdev MD-Pro is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser...
Md-Pro <= 1.0.8x (Topics topicid) Remote SQL Injection Vulnerability
No description provided by source. !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! Site: http://www.maxdev.com Download: http://www.maxdev.com/mod-Areafiles-display-lid-510-cid-1.phtml Dork: Powered by Md-Pro !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!...
MAXdev MD-Pro 1.0.73 Multiple Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/14751/info MAXdev MD-Pro is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issu...
MAXdev MD-Pro 1.0.73 Arbitrary Remote File Upload Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/14750/info MAXdev MD-Pro is prone to an arbitrary remote file upload vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. This issue is due to a design error in the...
MD-Pro 1.0.76 Index.PHP Firefox ID SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/25864/info MD-Pro is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to compromi...
CVE-2009-2618
CVE-2009-2618 is an SQL injection vulnerability in the MDPro Surveys Module (MDPro) 1.083.x. The issue allows remote attackers to execute arbitrary SQL commands via the pollID parameter in a results action to modules.php. OpenVAS entries corroborate MDPro SQLi vulnerability in this module and pro...