9 matches found
EUVD-2005-0461
Malware in sbrugna...
CVE-2005-0460
index.php in MercuryBoard 1.0.x and 1.1.x allows remote attackers to obtain sensitive information by setting the debug parameter...
CVE-2005-0663
SQL injection vulnerability in index.php for MercuryBoard 1.1.2 allows remote attackers to inject arbitrary SQL commands via the f parameter...
CVE-2005-0462
Cross-site scripting XSS vulnerability in MercuryBoard 1.0.x and 1.1.x allows remote attackers to inject arbitrary HTML and web script via the f parameter...
CVE-2005-0462
Cross-site scripting XSS vulnerability in MercuryBoard 1.0.x and 1.1.x allows remote attackers to inject arbitrary HTML and web script via the f parameter...
[SA13937] MercuryBoard "f" Cross-Site Scripting Vulnerability
TITLE: MercuryBoard "f" Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA13937 VERIFY ADVISORY: http://secunia.com/advisories/13937/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: MercuryBoard 1.x http://secunia.com/product/4560/ DESCRIPTION: Lostmon ha...
MercuryBoard 1.1.1 - SQL Injection
MercuryBoard 1.1.1 - SQL Injection little late posting this /str0ke Exploit: http://www.site.com/mercuryboard/index.php?a=post&s=reply&t=1&qu=10000%20UNION%20SELECT%20userpassword,username%20from%20mbusers%20where%20usergroup%20=%201%20limit%201/ milw0rm.com 2005-02-12...
MercuryBoard <= 1.1.1 Working Sql Injection
Exploit for unknown platform in category web applications =========================================== MercuryBoard = 1.1.1 Working Sql Injection =========================================== little late posting this /str0ke Exploit:...
CVE-2005-0306
MercuryBoard 1.1.1 allows remote attackers to gain sensitive information via an HTTP request with the n parameter set to 0, which causes a divide-by-zero error and reveals the path in the resulting error message...