EUVD-2005-3964

Malware in sbrugna...

EUVD-2005-3965

Malware in sbrugna...

CVE-2005-3969

SQL injection vulnerability in MXChange before 0.2.0-pre10 PL492 allows remote attackers to execute arbitrary SQL commands via unknown vectors...

CVE-2005-3970

Cross-site scripting XSS vulnerability in MXChange before 0.2.0-pre10 PL492 allows remote attackers to inject arbitrary web script or HTML via unknown vectors...

CVE-2005-3969

CVE-2005-3969 affects MXChange prior to 0.2.0-pre10 PL492, where an SQL injection vulnerability could allow remote attackers to execute arbitrary SQL via unknown vectors. The available documents confirm the affected software/versions and the underlying issue (SQL injection); no explicit remediati...

CVE-2005-3970

MXChange prior to 0.2.0-pre10 PL492 contains a cross-site scripting (XSS) vulnerability that could allow remote attackers to inject arbitrary web script or HTML via unknown vectors. Affected component: MXChange software; vulnerability described in CVE-2005-3970 with CVSS v2 vector AV:N/AC:M/Au:N/...

CVE-2005-3970

Cross-site scripting XSS vulnerability in MXChange before 0.2.0-pre10 PL492 allows remote attackers to inject arbitrary web script or HTML via unknown vectors...

CVE-2005-3969

SQL injection vulnerability in MXChange before 0.2.0-pre10 PL492 allows remote attackers to execute arbitrary SQL commands via unknown vectors...

[SA17793] MXChange Unspecified Cross-Site Scripting and SQL Injection Vulnerabilities

TITLE: MXChange Unspecified Cross-Site Scripting and SQL Injection Vulnerabilities SECUNIA ADVISORY ID: SA17793 VERIFY ADVISORY: http://secunia.com/advisories/17793/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting, Manipulation of data WHERE: From remote SOFTWARE: MXChange 0.x...