19 matches found
EUVD-2008-6573
Malware in sbrugna...
EUVD-2008-6574
Malware in sbrugna...
EUVD-2008-6575
Malware in sbrugna...
minimal ablog 0.4 (sql/fu/bypass) Multiple Vulnerabilities
No description provided by source. =========================================================================================================== o minimal-ablog 0.4 SQL Injection, File Upload and Admin Bypass Vuln Software : minimal-ablog version 0.4 Vendor : http://www.abweb.co.cc/ Download :...
Sql injection
SQL injection vulnerability in index.php in Minimal ABlog 0.4 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2008-6611
SQL injection vulnerability in index.php in Minimal ABlog 0.4 allows remote attackers to execute arbitrary SQL commands via the id parameter...
Design/Logic Flaw
uploader.php in minimal-ablog 0.4 does not properly restrict access, which allows remote attackers to gain administrative privileges via a direct request...
CVE-2008-6613
uploader.php in minimal-ablog 0.4 does not properly restrict access, which allows remote attackers to gain administrative privileges via a direct request...
CVE-2008-6612
Unrestricted file upload vulnerability in admin/uploader.php in Minimal ABlog 0.4 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in img/...
CVE-2008-6611
SQL injection vulnerability in index.php in Minimal ABlog 0.4 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2008-6611
CVE-2008-6611 describes a SQL injection in index.php of Minimal ABlog 0.4, exploitable via the id parameter to execute arbitrary SQL commands. The NVD notes a base score of 7.5 (HIGH) with network attack vector and low complexity, no authentication required, affecting confidentiality, integrity, ...
CVE-2008-6612
CVE-2008-6612 affects Minimal ABlog 0.4. The flaw is an unrestricted file upload in admin/uploader.php that allows remote code execution by uploading a file with an executable extension and then accessing it via a direct request to img/.[citation from NVD: Unrestricted file upload vulnerability t...
CVE-2008-6613
CVE-2008-6613 affects minimal-ablog 0.4, where uploader.php fails to properly restrict access. This allows remote attackers to gain administrative privileges via a direct request. The description and linked references confirm the component and impact but do not provide exploit details, affected v...
CVE-2008-6613
uploader.php in minimal-ablog 0.4 does not properly restrict access, which allows remote attackers to gain administrative privileges via a direct request...
minimalablog-sqlfubypass.txt
=========================================================================================================== o minimal-ablog 0.4 SQL Injection, File Upload and Admin Bypass Vuln Software : minimal-ablog version 0.4 Vendor : http://www.abweb.co.cc/ Download :...
Minimal Ablog 0.4 (SQL/FU/Bypass) Multiple Remote Vulnerabilities
No description provided by source. =========================================================================================================== o minimal-ablog 0.4 SQL Injection, File Upload and Admin Bypass Vuln Software : minimal-ablog version 0.4 Vendor : http://www.abweb.co.cc/ Download :...
minimal ablog 0.4 - SQL Injection Arbitrary File Upload Authentication Bypass
minimal ablog 0.4 - SQL Injection Arbitrary File Upload Authentication Bypass =========================================================================================================== o minimal-ablog 0.4 SQL Injection, File Upload and Admin Bypass Vuln Software : minimal-ablog version 0.4 Vendo...
Minimal Ablog 0.4 (SQL/FU/Bypass) Multiple Remote Vulnerabilities
Exploit for unknown platform in category web applications ================================================================= Minimal Ablog 0.4 SQL/FU/Bypass Multiple Remote Vulnerabilities =================================================================...
minimal ablog 0.4 - SQL Injection / Arbitrary File Upload / Authentication Bypass
=========================================================================================================== o minimal-ablog 0.4 SQL Injection, File Upload and Admin Bypass Vuln Software : minimal-ablog version 0.4 Vendor : http://www.abweb.co.cc/ Download :...