EUVD-2006-4893

Malware in sbrugna...

CVE-2006-4906

SQL injection vulnerability in modules/calendar/week.php in More.groupware 0.74 allows remote attackers to execute arbitrary SQL commands via the newcalendarid parameter...

CVE-2006-4906

SQL injection vulnerability in modules/calendar/week.php in More.groupware 0.74 allows remote attackers to execute arbitrary SQL commands via the newcalendarid parameter...

CVE-2006-4906

The CVE-2006-4906 entry documents a SQL injection in More.groupware 0.74, specifically in modules/calendar/week.php where the new_calendarid parameter can be exploited to execute arbitrary SQL commands. Affected component: More.groupware 0.74 (calendar module). Root cause: unsanitized input in ne...

more.groupware 0.74 - new_calendarid SQL Injection

more.groupware 0.74 - newcalendarid SQL Injection ? errorreportingEERROR; function exploitinit if !extensionloaded'phpcurl' && !extensionloaded'curl' if !dl'curl.so' && !dl'phpcurl.dll' die "oo error - cannot load curl extension!"; function exploitheader echo...

more.groupware <= 0.74 (new_calendarid) Remote SQL Injection Exploit

No description provided by source. ? errorreportingEERROR; function exploitinit if !extensionloaded'phpcurl' && !extensionloaded'curl' if !dl'curl.so' && !dl'phpcurl.dll' die "oo error - cannot load curl extension!"; function exploitheader echo...

CVE-2001-1296

More.groupware PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable...

CVE-2001-1296

Technical details about CVE-2001-1296 are not publicly available in the provided documents. Monitor for updates.