16 matches found
EUVD-2010-0975
Malware in sbrugna...
EUVD-2010-0974
Malware in sbrugna...
Natychmiast CMS Multiple Cross Site Scripting and SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/38561/info Natychmiast CMS is prone to multiple cross-site scripting and SQL-injection vulnerabilities. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, control how the sit...
SQL injection vulnerability in Natychmiast CMS
Title: SQL injection vulnerability in Natychmiast CMS Date: 03.03.2010 Author: Ariko-Security Software Link: http://www.natychmiast-cms.pl/ Version: ALL ============ Ariko-Security - Advisory 2/3/2010 ============= SQL injection and XSS vulnerability in NATYCHMIAST CMS Vendor's Description of...
CVE-2010-0949
Multiple cross-site scripting XSS vulnerabilities in Natychmiast CMS allow remote attackers to inject arbitrary web script or HTML via the idstr parameter to 1 index.php and 2 aindex.php...
CVE-2010-0950
Multiple SQL injection vulnerabilities in Natychmiast CMS allow remote attackers to execute arbitrary SQL commands via the idstr parameter to 1 index.php and 2 aindex.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Natychmiast CMS allow remote attackers to inject arbitrary web script or HTML via the idstr parameter to 1 index.php and 2 aindex.php...
Sql injection
Multiple SQL injection vulnerabilities in Natychmiast CMS allow remote attackers to execute arbitrary SQL commands via the idstr parameter to 1 index.php and 2 aindex.php...
CVE-2010-0949
CVE-2010-0949 involves multiple XSS vulnerabilities in Natychmiast CMS. The affected component is the web application (Natychmiast CMS) where the id_str parameter on index.php and a_index.php can be exploited to inject arbitrary web script or HTML. The provided documents do not specify software v...
CVE-2010-0950
Multiple SQL injection vulnerabilities in Natychmiast CMS allow remote attackers to execute arbitrary SQL commands via the idstr parameter to 1 index.php and 2 aindex.php...
CVE-2010-0950
CVE-2010-0950 describes multiple SQL injection vulnerabilities in Natychmiast CMS that allow remote attackers to execute arbitrary SQL commands via the id_str parameter to (1) index.php and (2) a_index.php. Affected software is Natychmiast CMS; the underlying cause is improper handling of user-su...
CVE-2010-0949
Multiple cross-site scripting XSS vulnerabilities in Natychmiast CMS allow remote attackers to inject arbitrary web script or HTML via the idstr parameter to 1 index.php and 2 aindex.php...
Natychmiast CMS - Multiple Cross-Site Scripting / SQL Injections
source: https://www.securityfocus.com/bid/38561/info Natychmiast CMS is prone to multiple cross-site scripting and SQL-injection vulnerabilities. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, control how the site is rendered to the user,...
Natychmiast CMS Cross Site Scripting / SQL Injection Vulnerability
Exploit for unknown platform in category web applications ================================================================== Natychmiast CMS Cross Site Scripting / SQL Injection Vulnerability ================================================================== SQL injection and XSS vulnerability in...
Natychmiast CMS - Multiple Cross-Site Scripting SQL Injections
Natychmiast CMS - Multiple Cross-Site Scripting SQL Injections source: https://www.securityfocus.com/bid/38561/info Natychmiast CMS is prone to multiple cross-site scripting and SQL-injection vulnerabilities. Exploiting these issues could allow an attacker to steal cookie-based authentication...
Natychmiast CMS Cross Site Scripting / SQL Injection
Title: SQL injection vulnerability in Natychmiast CMS Date: 03.03.2010 Author: Ariko-Security Software Link: http://www.natychmiast-cms.pl/ Version: ALL ============ Ariko-Security - Advisory 2/3/2010 ============= SQL injection and XSS vulnerability in NATYCHMIAST CMS Vendor's Description of...