13 matches found
EUVD-2010-4243
Malware in sbrugna...
EUVD-2008-7255
Malware in sbrugna...
EUVD-2012-6364
Malware in sbrugna...
CVE-2008-7302
SQL injection vulnerability in netinvoice.php in the nBill comnetinvoice component 1.2.0 SP1 for Joomla! allows remote attackers to execute arbitrary SQL commands via unspecified vectors involving "knowledge of ... the contents of an encrypted file."...
CVE-2012-6514
Cross-site scripting XSS vulnerability in the nBill comnbill component 2.3.2 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the message parameter in an income action to administrator/index.php...
CVE-2012-6514
Cross-site scripting XSS vulnerability in the nBill comnbill component 2.3.2 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the message parameter in an income action to administrator/index.php...
CVE-2012-6514
CVE-2012-6514 is a Cross-site Scripting (XSS) vulnerability in the Joomla! environment using the nBill (com_nbill) component 2.3.2 . The issue occurs when an attacker can inject arbitrary web script or HTML via the message parameter in an income action to administrator/index.php . The CVSS metric...
CVE-2008-7302
SQL injection vulnerability in netinvoice.php in the nBill comnetinvoice component 1.2.0 SP1 for Joomla! allows remote attackers to execute arbitrary SQL commands via unspecified vectors involving "knowledge of ... the contents of an encrypted file."...
Directory traversal
Directory traversal vulnerability in the nBill comnetinvoice component before 2.0.9 standard edition, 2.0.10 lite edition, and 1.210 for Joomla! allows remote attackers to read arbitrary files via directory traversal sequences in unspecified vectors related to 1...
VulnCheck KEV: CVE-2010-4270
Directory traversal vulnerability in the nBill comnetinvoice component before 2.0.9 standard edition, 2.0.10 lite edition, and 1.210 for Joomla! allows remote attackers to read arbitrary files via directory traversal sequences in unspecified vectors related to 1...
CVE-2008-3498
SQL injection vulnerability in the nBill comnetinvoice component 1.2.0 SP1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the cid parameter in an orders action to index.php. NOTE: some of these details are obtained from third party information...
Sql injection
SQL injection vulnerability in the nBill comnetinvoice component 1.2.0 SP1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the cid parameter in an orders action to index.php. NOTE: some of these details are obtained from third party information...
nBill component for Joomla! 'cid' Parameter SQLi
The version of the nBill also known as netinvoice component for Joomla! and Mambo running on the remote host is affected by a SQL injection vulnerability due to improper sanitization of user-supplied input to the 'cid' parameter before using it to construct database queries. Regardless of the PHP...