EUVD-2008-1419

Malware in sbrugna...

EUVD-2008-1418

Malware in sbrugna...

CVE-2008-1414

Cross-site scripting XSS vulnerability in Multiple Time Sheets MTS 5.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the tab parameter to 1 index.php, as demonstrated using mixed case and encoded whitespace characters in the tag; or 2 clientinfo.php, 3 invoices.ph...

CVE-2008-1415

Directory traversal vulnerability in index.php in Multiple Time Sheets MTS 5.0 and earlier allows remote attackers to read arbitrary files via "../..//" modified dot dot sequences in the tab parameter...

CVE-2008-1414

CVE-2008-1414 : The vulnerability affects Multiple Time Sheets (MTS) 5.0 and earlier. A cross-site scripting (XSS) flaw exists where an attacker can inject arbitrary script or HTML via the tab parameter to index.php, or to clientinfo.php, invoices.php, smartlinks.php, and todo.php, demonstrated b...

CVE-2008-1414

Cross-site scripting XSS vulnerability in Multiple Time Sheets MTS 5.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the tab parameter to 1 index.php, as demonstrated using mixed case and encoded whitespace characters in the tag; or 2 clientinfo.php, 3 invoices.ph...

CVE-2008-1415

CVE-2008-1415 affects the web app component index.php in Multiple Time Sheets (MTS) 5.0 and earlier. The vulnerability is a directory traversal through the tab parameter, using modified dot-dot sequences ("../..//"), allowing remote attackers to read arbitrary files. The provided documents do not...