90 matches found
EUVD-2008-4073
Malware in sbrugna...
EUVD-2003-1362
Malware in sbrugna...
EUVD-2008-4077
Malware in sbrugna...
EUVD-2006-0927
Malware in sbrugna...
EUVD-2002-1892
Malware in sbrugna...
EUVD-2008-4074
Malware in sbrugna...
CVE-2002-1913
phptonuke.php in myPHPNuke 1.8.8 allows remote attackers to read arbitrary files via a full pathname in the filnavn variable...
myPHPNuke 1.8.8 Links.php Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6892/info Reportedly, myPHPNuke 'links.php' does not adequately filter HTML code thus making it prone to cross-site scripting attacks. It is possible for a remote attacker to create a malicious link containing script code...
myphpnuke < 1.8.8_8rc2 (xss/sql) Multiple Vulnerabilities
No description provided by source. Cross-Site Scripting and SQL Injection vulnerabilities in myPHPNuke By MustLive http://websecurity.com.ua Detailed information: http://websecurity.com.ua/2391/ Description: There are Cross-Site Scripting and SQL Injection vulnerabilities in print.php in myPHPNuk...
myPHPNuke 1.8.8 Default_Theme Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6544/info Reportedly, myPHPNuke does not adequately filter HTML code thus making it prone to cross-site scripting attacks. It is possible for a remote attacker to create a malicious link containing script code which will ...
myPHPNuke 1.8.8 reviews.php letter Parameter XSS
No description provided by source. !/usr/bin/env python coding: utf-8 from urlparse import urljoin from pocsuite.net import req from pocsuite.poc import POCBase, Output from pocsuite.utils import register class TestPOCPOCBase: vulID = '80921' ssvid version = '1.0' author = 'Disorder' vulDate =...
myPHPNuke 1.8.8 auth.inc.php SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8663/info It has been reported that myPHPNuke is prone to a SQL injection vulnerability that may allow a remote attacker to inject malicious SQL syntax into database queries. The issue may exist in the auth.in.php module ...
myPHPNuke 1.8.8 download.php dcategory Parameter XSS
No description provided by source...
myPHPNuke < 1.8.8_8rc2 (artid) SQL Injection Vulnerability
No description provided by source. SQL Injection vulnerability in myPHPNuke By MustLive http://websecurity.com.ua Detailed information: http://websecurity.com.ua/2398/ Description: There is SQL Injection vulnerability in printfeature.php in myPHPNuke. SQL Injection:...
myPHPNuke SQL Injection
myPHPNuke PrintReview SQL Injection Vulnerability Author: Gamoscu Site: www.1923turk.com Blog: http://gamoscu.wordpress.com/ Exploit: xxxxx/xxx/reviews.php?op=PrintReview&id=SQL-inj -1+union+select+1,concatws0x3a3a,aid,pwd,3,4,5,6,7,8,9+from+mpnauthors-- Demo:...
SQL Injection vulnerability in myPHPNuke
Здравствуйте 3APA3A! Сообщаю вам о найденной мною SQL Injection уязвимости в системе myPHPNuke. SQL Injection: POST запрос на странице http://site/admin.php " from mpnauthors where benchmark10000,md5now!=1/ В поле Nickname. Auth Bypass атака в данном случае невозможна, только Blind SQL Injection...
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. myPHPNuke: SQL injection...
XSS and SQL Injection vulnerabilities in myPHPNuke
Здравствуйте 3APA3A! Сообщаю вам о найденных мною Cross-Site Scripting и SQL Injection уязвимостях в системе myPHPNuke. XSS: http://websecurity.com.ua/uploads/2009/myPHPNuke20XSS2.html эксплоит для Mozilla и Firefox http://websecurity.com.ua/uploads/2009/myPHPNuke20XSS220IE.html эксплоит для IE...
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. myPHPNuke: crossite scripting, SQL injection...
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. myPHPNuke: SQL injection, crossite scripting. PostNuke: SQL injection...