EUVD-2006-3356

Malware in sbrugna...

EUVD-2006-3355

Malware in sbrugna...

newsPHP 2006 PRO inc/rss_feed.php category Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/18726/info NewsPHP 2006 PRO is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properl...

CVE-2006-3358

Multiple cross-site scripting XSS vulnerabilities in index.php in NewsPHP 2006 PRO allow remote attackers to inject arbitrary web script or HTML via the 1 words, 2 id, 3 catid, and 4 tim parameters, which are not sanitized before being returned in an error page. NOTE: it is possible that some of...

CVE-2006-3359

Multiple SQL injection vulnerabilities in index.php in NewsPHP 2006 PRO allow remote attackers to inject arbitrary web script or HTML via the 1 words, 2 id, 3 topmenuitem, and 4 catid parameters in a index.php; and the 5 category parameter in b inc/rssfeed.php...

CVE-2006-3359

CVE-2006-3359 affects NewsPHP 2006 PRO, with multiple SQL injection flaws in index.php (parameters: words, id, topmenuitem, cat_id) and in inc/rss_feed.php (category). Attackers could inject arbitrary scripts via these parameters. Public records (NVD/CVELIST) describe the vulnerability and impact...

NewsPHP 2006 PRO XSS SQL injection Vulnerability

http://newsphp.com ------------------ Cross Site Scripting XSS ------------------ http://target.xx/?words=3Cscript3Ealert/Ellipsis20Security20Test/3C/script3E&where=1 http://target.xx/index.php?id=3Cscript3Ealert22Ellipsis20Security20Test223C/script3E...

newsPHP 2006 PRO - index.php Multiple SQL Injections

newsPHP 2006 PRO - index.php Multiple SQL Injections source: https://www.securityfocus.com/bid/18726/info NewsPHP 2006 PRO is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the...

newsPHP 2006 PRO - '/inc/rss_feed.php?category' SQL Injection

source: https://www.securityfocus.com/bid/18726/info NewsPHP 2006 PRO is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. A...

newsPHP 2006 PRO - 'index.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/18726/info NewsPHP 2006 PRO is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. A...

newsPHP 2006 PRO - 'index.php' Multiple SQL Injections

source: https://www.securityfocus.com/bid/18726/info NewsPHP 2006 PRO is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. A...

newsPHP 2006 PRO - incrss_feed.php?category SQL Injection

newsPHP 2006 PRO - incrssfeed.php?category SQL Injection source: https://www.securityfocus.com/bid/18726/info NewsPHP 2006 PRO is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the...

newsPHP 2006 PRO - index.php Multiple Cross-Site Scripting Vulnerabilities

newsPHP 2006 PRO - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/18726/info NewsPHP 2006 PRO is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due t...