36 matches found
EUVD-2008-1237
Malware in sbrugna...
EUVD-2007-5460
Malware in sbrugna...
EUVD-2006-0500
Malware in sbrugna...
CVE-2008-1228
Cross-site scripting XSS vulnerability in admin.php in MG2 formerly Minigal allows remote attackers to inject arbitrary web script or HTML via the list parameter in an import action...
MG2 0.5.1 Authentication Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15235/info MG2 is affected by an authentication bypass vulnerability. This issue can allow remote attackers to gain access to password protected image galleries. All versions of MG2 are considered to be vulnerable at the...
MG2 'list' Parameter - Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/28098/info MG2 is prone to a cross-site scripting vulnerability because it fails to adequately sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...
MG2 0.5.1 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/46378/info MG2 is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the contex...
MG2 0.5.1 Cross Site Scripting
MG2 0.5.1 Multiple XSS Vulnerabilities Vendor: MiniGal Product web page: http://www.minigal.dk Affected version: 0.5.1 Summary: MG2 is the sequel to the popular image gallery script MiniGal. One of the highlights of MG2 is, that it supports PHP running in safe mode which is unsupported by almost...
MG2 0.5.1 (filename) Remote Code Execution Vulnerability
No description provided by source. ?php /000000000000----------------------000\\ /-00--------++++++++++++++++++ -- -- - MiniGal2MG2 v0.5.1 remote Code Injection | Z okazji urodzin ¿yczê sobie wszystkiego zajebistego Zawsze na odwrót lol '''''---" 0 ------------ \ A-L | """""" '--==9 Victoria heh...
MG2 0.5.1 - filename Remote Code Execution
MG2 0.5.1 - filename Remote Code Execution and rest and ALL ---------++++++++++++================= -- =======-- ./.................. =======--////- VULN:includes\mg2functions.php function writecomments$filename LINE 555 --------- function writecomments$filename $filename = "pictures/" . $filename...
MG2 0.5.1 (filename) Remote Code Execution Vulnerability
Exploit for unknown platform in category web applications ======================================================== MG2 0.5.1 filename Remote Code Execution Vulnerability ======================================================== and rest and ALL ---------++++++++++++================= -- =======--...
Cross site scripting
Cross-site scripting XSS vulnerability in admin.php in MG2 formerly Minigal allows remote attackers to inject arbitrary web script or HTML via the list parameter in an import action...
CVE-2008-1228
Cross-site scripting XSS vulnerability in admin.php in MG2 formerly Minigal allows remote attackers to inject arbitrary web script or HTML via the list parameter in an import action...
CVE-2008-1228
CVE-2008-1228 is a cross-site scripting (XSS) flaw in MG2 (formerly Minigal) that affects the admin.php interface. The vulnerability is triggered by the list parameter during an import action, allowing remote attackers to inject arbitrary web script or HTML. Documents consistently describe this a...
CVE-2008-1228
Cross-site scripting XSS vulnerability in admin.php in MG2 formerly Minigal allows remote attackers to inject arbitrary web script or HTML via the list parameter in an import action...
MG2 - list Cross-Site Scripting
MG2 - list Cross-Site Scripting source: https://www.securityfocus.com/bid/28098/info MG2 is prone to a cross-site scripting vulnerability because it fails to adequately sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...
MG2 - 'list' Cross-Site Scripting
source: https://www.securityfocus.com/bid/28098/info MG2 is prone to a cross-site scripting vulnerability because it fails to adequately sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...
CVE-2007-5485
SQL injection vulnerability in index.php in the mg2 1.0 module for KwsPHP allows remote attackers to execute arbitrary SQL commands via the album parameter...
Sql injection
SQL injection vulnerability in index.php in the mg2 1.0 module for KwsPHP allows remote attackers to execute arbitrary SQL commands via the album parameter...
CVE-2007-5485
SQL injection vulnerability in index.php in the mg2 1.0 module for KwsPHP allows remote attackers to execute arbitrary SQL commands via the album parameter...