34 matches found
Admidio 路径遍历漏洞
Admidio is a set of open-source member management systems developed by the Admidio team. This system supports features such as member lists, event management, message boards, photo albums, and downloads. Prior to Admidio 5.0.9, there was a path traversal vulnerability. This vulnerability stemmed...
EUVD-2004-1836
Malware in sbrugna...
EUVD-2010-4860
Malware in sbrugna...
EUVD-2004-1837
Malware in sbrugna...
Admidio 安全漏洞
Admidio is an open source member management system from the Admidio team. The system supports features such as member lists, event management, guestbooks, photo albums and downloads. A security vulnerability exists in Admidio versions prior to 4.3.9, which stems from the presence of a SQL injecti...
Expinion.net Member Management System 2.1 register.asp err Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/9932/info It has been reported that a number of Member Management System scripts are prone to cross-site scripting vulnerabilities. These issues are reportedly due to a failure to sanitize user input and so allow HTML and...
Expinion.net Member Management System 2.1 news_view.asp ID Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/9931/info It has been reported that Member Management System may be prone to a SQL injection vulnerability that may allow a remote attacker to inject malicious SQL syntax into database queries. The problem is reported to...
Expinion.net Member Management System 2.1 error.asp err Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/9932/info It has been reported that a number of Member Management System scripts are prone to cross-site scripting vulnerabilities. These issues are reportedly due to a failure to sanitize user input and so allow HTML and...
Expinion.net Member Management System 2.1 resend.asp ID Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/9931/info It has been reported that Member Management System may be prone to a SQL injection vulnerability that may allow a remote attacker to inject malicious SQL syntax into database queries. The problem is reported to...
Expinion.Net Member Management System 'REF_URL' Parameter Cross-Site Scripting Vulnerability
The host is running Member Management System and is prone to cross site scripting vulnerability. OpenVAS Vulnerability Test $Id: gbmembermanagementsystemxssvuln.nasl 5750 2017-03-28 14:10:17Z cfi $ Expinion.Net Member Management System 'REFURL' Parameter Cross-Site Scripting Vulnerability Authors...
CVE-2010-4896
Cross-site scripting XSS vulnerability in admin/index.asp in Member Management System 4.0 allows remote attackers to inject arbitrary web script or HTML via the REFURL parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in admin/index.asp in Member Management System 4.0 allows remote attackers to inject arbitrary web script or HTML via the REFURL parameter...
CVE-2010-4896
Cross-site scripting XSS vulnerability in admin/index.asp in Member Management System 4.0 allows remote attackers to inject arbitrary web script or HTML via the REFURL parameter...
CVE-2010-4896
CVE-2010-4896 is a documented cross-site scripting (XSS) vulnerability in the Admin/index.asp page of Expinion.Net Member Management System 4.0 . The issue arises from the REF_URL parameter , enabling remote attackers to inject arbitrary web script or HTML. Multiple security feeds (OpenVAS entrie...
ASPSiteWare Project Reporter - SQL Injection
ASPSiteWare Project Reporter - SQL Injection Author: R4dc0re Exploit Title: ASPSiteware Project Reporter SQL injection Vulnerability Date: 04-12-2010 Vendor or Software Link: www.aspsiteware.com Category:WebApp Version:1.0 Price:50$ Contact: [email protected] Website: www.1337db.com Greetings to:...
ASPSiteWare Project Reporter - SQL Injection
Author: R4dc0re Exploit Title: ASPSiteware Project Reporter SQL injection Vulnerability Date: 04-12-2010 Vendor or Software Link: www.aspsiteware.com Category:WebApp Version:1.0 Price:50$ Contact: [email protected] Website: www.1337db.com Greetings to: R0073r1337db.com, L0rd CrusAd3r,Sid3^effects...
Member Management System v 4.0 XSS vuln.
Vuln. discovered by : r0t Date: 09 September 2010 vendor:http://www.expinion.net/Applications/MMSoverview.asp orginal advisory:http://pridels-team.blogspot.com/2010/09/member-management-system-v-40-xss-vuln.html affected versions:v 4.0 and other versions also can be affected. Member Management...
phpcms 2007网站管理系统Member.php页面SQL注入漏洞
在member/member.php的第4行,代码如下: 1. .............. 2. $m = $db-getone SELECT FROM .TABLEMEMBER. m , .TABLEMEMBERINFO. i WHERE m.userid=i.userid AND m.username= 3. $username 4. , CACHE ,86400; 5. .............. username变量未经过过滤就进入查询了,我们在其包含的include/common.inc.php文件中有如下代码: 1. ................ 2...
Blackorpheus ClanMemberSkript 1.0 - SQL Injection
Internet Security | |---==============================================================---| title: Blackorpheus ClanMemberSkript 1.0 remote sql injection release: 2006-04-16 author: snatcher snatcher at gmx.ch country: switzerland |+| application: Blackorpheus ClanMemberSkript 1.0 description: a p...
Blackorpheus ClanMemberSkript 1.0 - SQL Injection
Blackorpheus ClanMemberSkript 1.0 - SQL Injection Internet Security | |---==============================================================---| title: Blackorpheus ClanMemberSkript 1.0 remote sql injection release: 2006-04-16 author: snatcher snatcher at gmx.ch country: switzerland |+| application:...