EUVD-2006-4854

Malware in sbrugna...

Sql injection

Multiple SQL injection vulnerabilities in SineCMS 2.3.4 and earlier allow remote attackers to execute arbitrary SQL commands via 1 the id parameter to mods/Calendar/index.php, accessed through a Calendar info action to mods.php; the id parameter to admin/modsadm.php in a 2 Guestbook modifica or 3...

Cross site scripting

Cross-site scripting XSS vulnerability in mods.php in GTP GNUTurk Portal System 3G allows remote attackers to inject arbitrary web script or HTML via the month parameter...

GNUTurk - 'Mods.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/24152/info Gnuturk is prone to a cross-site scripting vulnerability. Exploiting this vulnerability may allow an attacker to perform cross-site scripting attacks on unsuspecting users in the context of the affected website. As a result, the attacker may be...

CVE-2006-4867

SQL injection vulnerability in mods.php in GNUTurk 2G and earlier allows remote attackers to execute arbitrary SQL commands via the tid parameter when the go parameter is "Forum."...