4 matches found
EUVD-2008-3332
Malware in sbrugna...
CVE-2008-3345
SQL injection vulnerability in staticpages/easyecards/index.php in MyioSoft EasyE-Cards 3.5 trial edition tr and 3.10a, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the sid parameter in a pickup action...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in staticpages/easyecards/index.php in MyioSoft EasyE-Cards 3.5 trial edition tr and 3.10a allow remote attackers to inject arbitrary web script or HTML via the 1 ResultHtml, 2 dir, 3 SenderName, 4 RecipientName, 5 SenderMail, and 6 RecipientMail...
CVE-2008-3345
The CVE-2008-3345 entry describes a SQL injection in MyioSoft EasyE-Cards (3.5 trial edition and 3.10a) via staticpages/easyecards/index.php when magic_quotes_gpc is disabled. The vulnerability affects the sid parameter in a pickup action, allowing remote SQL command execution. No fixes or remedi...