33 matches found
EUVD-2007-2891
Malware in sbrugna...
EUVD-2008-5914
Malware in sbrugna...
EUVD-2006-0148
Malware in sbrugna...
EUVD-2008-5913
Malware in sbrugna...
NavBoard 2.6.0 - Remote Code Execution Exploit
No description provided by source. ?php / \|/// \ - - // @ @ ----oOOo---oOOo--------------------------------------------------- Y! Underground Group [email protected] Dj7xpl.2600.ir ----ooooO-----Ooooo-------------------------------------------------- \ / \ /...
Nortel Networks SRG V16 modules.php module Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/30687/info Navboard is prone to multiple local file-include vulnerabilities and a cross-site scripting vulnerability. An attacker can exploit the local file-include vulnerability using directory-traversal strings to execu...
CVE-2008-5943
Multiple directory traversal vulnerabilities in NavBoard 16 2.6.0 allow remote attackers to include and execute arbitrary local files via a .. dot dot in the module parameter to 1 adminmodules.php and 2 modules.php...
CVE-2008-5944
Cross-site scripting XSS vulnerability in modules.php in NavBoard 16 2.6.0 allows remote attackers to inject arbitrary web script or HTML via the module parameter...
Directory traversal
Multiple directory traversal vulnerabilities in NavBoard 16 2.6.0 allow remote attackers to include and execute arbitrary local files via a .. dot dot in the module parameter to 1 adminmodules.php and 2 modules.php...
Cross site scripting
Cross-site scripting XSS vulnerability in modules.php in NavBoard 16 2.6.0 allows remote attackers to inject arbitrary web script or HTML via the module parameter...
CVE-2008-5944
Cross-site scripting XSS vulnerability in modules.php in NavBoard 16 2.6.0 allows remote attackers to inject arbitrary web script or HTML via the module parameter...
CVE-2008-5943
NavBoard 16 (2.6.0) contains multiple directory traversal vulnerabilities enabling remote inclusion/execution of local files via … in the module parameter to admin_modules.php or modules.php. CVSS v2 base score 7.5 (HIGH); network attack vector, low difficulty, no authentication required, partial...
CVE-2008-5944
NavBoard 16 (2.6.0) has a cross-site scripting vulnerability in modules.php exploitable via the module parameter. Per NVD, CVE-2008-5944 enables remote script injection with network access, high complexity, no authentication, and partial integrity impact; no remediation details are provided in th...
CVE-2008-5943
Multiple directory traversal vulnerabilities in NavBoard 16 2.6.0 allow remote attackers to include and execute arbitrary local files via a .. dot dot in the module parameter to 1 adminmodules.php and 2 modules.php...
navboard-lfixss.txt
┌┌─────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └─────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An Unimaginable...
Nortel Networks SRG V16 - modules.php?module Cross-Site Scripting
Nortel Networks SRG V16 - modules.php?module Cross-Site Scripting source: https://www.securityfocus.com/bid/30687/info Navboard is prone to multiple local file-include vulnerabilities and a cross-site scripting vulnerability. An attacker can exploit the local file-include vulnerability using...
Nortel Networks SRG V16 - 'modules.php?module' Traversal Local File Inclusion
source: https://www.securityfocus.com/bid/30687/info Navboard is prone to multiple local file-include vulnerabilities and a cross-site scripting vulnerability. An attacker can exploit the local file-include vulnerability using directory-traversal strings to execute local script code in the contex...
Nortel Networks SRG V16 - 'modules.php?module' Cross-Site Scripting
source: https://www.securityfocus.com/bid/30687/info Navboard is prone to multiple local file-include vulnerabilities and a cross-site scripting vulnerability. An attacker can exploit the local file-include vulnerability using directory-traversal strings to execute local script code in the contex...
CVE-2007-2899
Direct static code injection vulnerability in adminconfig.php in NavBoard 2.6.0 allows remote attackers to inject arbitrary PHP code into data/config.php via multiple parameters, as demonstrated via the threadperpage parameter in an editconfig action...
Code injection
Direct static code injection vulnerability in adminconfig.php in NavBoard 2.6.0 allows remote attackers to inject arbitrary PHP code into data/config.php via multiple parameters, as demonstrated via the threadperpage parameter in an editconfig action...