21 matches found
EUVD-2007-4791
Malware in sbrugna...
EUVD-2002-2093
Malware in sbrugna...
EUVD-2007-4792
Malware in sbrugna...
musicalibre.es XSS vulnerability
Open Bug Bounty ID: OBB-432783 Description| Value ---|--- Affected Website:| musicalibre.es Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...
Netjuke 1.0 RC1 - SQL Injection Vulnerabilities
Title: ====== Netjuke 1.0 RC1 - SQL Injection Vulnerabilities Date: ===== 2012-04-12 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=506 VL-ID: ===== 506 Introduction: ============= The Netjuke is a Web-Based Audio Streaming Jukebox powered by PHP 4, a database and all...
Netjuke 1.0 RC1 SQL Injection
Title: ====== Netjuke 1.0 RC1 - SQL Injection Vulnerabilities Date: ===== 2012-04-12 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=506 VL-ID: ===== 506 Introduction: ============= The Netjuke is a Web-Based Audio Streaming Jukebox powered by PHP 4, a database and all...
Netjuke 1.0 RC1 - SQL Injection Vulnerabilities
Document Title: =============== Netjuke 1.0 RC1 - SQL Injection Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=506 Release Date: ============= 2012-04-11 Vulnerability Laboratory ID VL-ID: ==================================== 506 Product...
Netjuke 1.0 RC1 - SQL Injection Vulnerabilities
Document Title: =============== Netjuke 1.0 RC1 - SQL Injection Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=506 Release Date: ============= 2012-04-11 Vulnerability Laboratory ID VL-ID: ==================================== 506 Product...
CVE-2007-4810
Multiple SQL injection vulnerabilities in Netjuke 1.0-rc2 allow remote attackers to execute arbitrary SQL commands via 1 the geid parameter in a list.artists action to explore.php or 2 the id parameter in a show.tracks action to xml.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Netjuke 1.0-rc2 allow remote attackers to inject arbitrary web script or HTML via 1 the val parameter to alphabet.php in an alpha.albums action, or the PATHINFO to 2 random.php or 3 admin/hidden.php...
CVE-2007-4811
Multiple cross-site scripting XSS vulnerabilities in Netjuke 1.0-rc2 allow remote attackers to inject arbitrary web script or HTML via 1 the val parameter to alphabet.php in an alpha.albums action, or the PATHINFO to 2 random.php or 3 admin/hidden.php...
Sql injection
Multiple SQL injection vulnerabilities in Netjuke 1.0-rc2 allow remote attackers to execute arbitrary SQL commands via 1 the geid parameter in a list.artists action to explore.php or 2 the id parameter in a show.tracks action to xml.php...
CVE-2007-4810
Multiple SQL injection vulnerabilities in Netjuke 1.0-rc2 allow remote attackers to execute arbitrary SQL commands via 1 the geid parameter in a list.artists action to explore.php or 2 the id parameter in a show.tracks action to xml.php...
CVE-2007-4811
CVE-2007-4811 concerns multiple cross-site scripting (XSS) vulnerabilities in Netjuke 1.0-rc2. The affected entry indicates that remote attackers can inject arbitrary web script or HTML via (1) the val parameter to alphabet.php in an alpha.albums action, or (2) the PATH_INFO to random.php, or (3)...
CVE-2007-4810
Netjuke 1.0-rc2 is affected by multiple SQL injection vulnerabilities in explore.php (list.artists with ge_id) and xml.php (show.tracks with id). The issues allow remote attackers to execute arbitrary SQL commands. The entry aligns with the NVD description of two injectable parameters in Netjuke,...
CVE-2007-4811
Multiple cross-site scripting XSS vulnerabilities in Netjuke 1.0-rc2 allow remote attackers to inject arbitrary web script or HTML via 1 the val parameter to alphabet.php in an alpha.albums action, or the PATHINFO to 2 random.php or 3 admin/hidden.php...
Netjuke 1.0-rc2 - sql injection & XSS
The Netjuke is a Web-Based Audio Streaming Jukebox powered by PHP 4, a database and all the MP3, Ogg Vorbis and other format files that constitute your digital music collection. Supports images, language packs, multi-level security, random playlists, etc http://sourceforge.net/projects/netjuke...
netjuke-sqlxss.txt
The Netjuke is a Web-Based Audio Streaming Jukebox powered by PHP 4, a database and all the MP3, Ogg Vorbis and other format files that constitute your digital music collection. Supports images, language packs, multi-level security, random playlists, etc http://sourceforge.net/projects/netjuke...
CVE-2002-2114
Artekopia Netjuke before 1.0 b7 is affected by a remote-code-execution vulnerability. The issue arises when the section parameter is passed to an eval call, enabling an attacker to run arbitrary code on the web server. The connected documents confirm the affected product/version and the root caus...
CVE-2002-2114
Artekopia Netjuke before 1.0 b7 allows remote attackers to execute arbitrary code on the web server, possibly via the section parameter, which is passed to an eval call...