EUVD-2008-6260

Malware in sbrugna...

EUVD-2007-6552

Malware in sbrugna...

EUVD-2008-6755

Malware in sbrugna...

CVE-2008-6795

SQL injection vulnerability in viewnews.php in nicLOR Vibro-School-CMS allows remote attackers to execute arbitrary SQL commands via the nID parameter...

Sql injection

SQL injection vulnerability in viewnews.php in nicLOR Vibro-School-CMS allows remote attackers to execute arbitrary SQL commands via the nID parameter...

CVE-2008-6795

SQL injection in view_news.php of nicLOR Vibro-School-CMS allows remote attackers to execute arbitrary SQL commands via the nID parameter. No versions or vulnerable modules are specified in the provided documents. Impact per CVSS shows partial confidentiality, integrity, and availability losses (...

Directory traversal

Directory traversal vulnerability in includefile.php in nicLOR Sito, when registerglobals is enabled or magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary files via a .. dot dot in the pagefile parameter...

CVE-2008-6290

CVE-2008-6290 describes a directory traversal in includefile.php of nicLOR Sito. When register_globals is enabled or magic_quotes_gpc is disabled, remote attackers can cause local file inclusion via a ".." in the page_file parameter. The vulnerability can affect confidentiality, integrity, and av...

cmsschool-sql.txt

! ! ! OOOO O OOOOOOOOO ! !O O O O O ! !O O O ! !O OOOO OOOO OOOOOO OOOO OOO OO O OOOO OO OO OOOO ! !O OOO OOO O O O O OO O O O O OO O O O ! !O OO OO O O OOOOOO O O O O O O OOOOOO ! !O O OOOO O O O O O O O O O O O ! ! OOOO OO OOOOOO OOOO OOOOOO OOOOOOOOO OOOO OOO OOO OOOO ! ! OO ! ! OO ! ! OO Prou...

nicLOR Sito includefile Local File Inclusion Vulnerabilities

No description provided by source. ------------------------------------------------------------ Sito includefile in PHP Local File Inclusion Vulnerabilities ------------------------------------------------------------ Discovered By StAkeRathotmaildotit Download On...

nicLOR Sito - includefile Local File Inclusion

nicLOR Sito - includefile Local File Inclusion ------------------------------------------------------------ Sito includefile in PHP Local File Inclusion Vulnerabilities ------------------------------------------------------------ Discovered By StAkeRathotmaildotit Download On...

CMS-School 2005 - showarticle.php SQL Injection

CMS-School 2005 - showarticle.php SQL Injection ! ! ! OOOO O OOOOOOOOO ! !O O O O O ! !O O O ! !O OOOO OOOO OOOOOO OOOO OOO OO O OOOO OO OO OOOO ! !O OOO OOO O O O O OO O O O O OO O O O ! !O OO OO O O OOOOOO O O O O O O OOOOOO ! !O O OOOO O O O O O O O O O O O ! ! OOOO OO OOOOOO OOOO OOOOOO...

Vibro-CMS - Multiple SQL Injections

/ ------------------------------------------------------- Vibro-CMS Multiple Remote SQL Injection Vulnerabilities ------------------------------------------------------- Discovered By StAkeRathotmaildotit http://www.niclor.net/prodotti/Vibro-CMS...

nicLOR Puglia Landscape (id) Local File Inclusion Vulnerability

Exploit for unknown platform in category web applications =============================================================== nicLOR Puglia Landscape id Local File Inclusion Vulnerability =============================================================== /...

Sql injection

SQL injection vulnerability in sezionenews.php in nicLOR-CMS allows remote attackers to execute arbitrary SQL commands via the id parameter in a sezione page action to index.php...

CVE-2007-6586

SQL injection vulnerability in sezionenews.php in nicLOR-CMS allows remote attackers to execute arbitrary SQL commands via the id parameter in a sezione page action to index.php...

CVE-2007-6586

SQL injection vulnerability in sezionenews.php in nicLOR-CMS allows remote attackers to execute arbitrary SQL commands via the id parameter in a sezione page action to index.php...

CVE-2007-6586

CVE-2007-6586 is a SQL injection in nicLOR-CMS (sezione_news.php) that allows remote attackers to inject arbitrary SQL via the id parameter in a sezione page action to index.php. Affected: nicLOR-CMS, sezione_news.php; impact per sources is partial confidentiality/integrity/availability. Exploit ...

nicLOR CMS sezione_news.php SQL注入漏洞

BUGTRAQ ID: 26983 CNCAN ID:CNCAN-2007122410 nicLOR CMS是一款基于PHP的WEB应用程序。 nicLOR CMS不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞进行SQL注入攻击，可获得敏感信息或操作数据库。 问题是由于'sezionenews.php'脚本对用户提交的'id'参数处理缺少充分过滤，提交恶意SQL查询作为参数数据，可更改原来的SQL逻辑，获得敏感信息或操作数据库。 nicLOR nicLOR 16-04-06 目前没有解决方案提供： http://www.niclor.net/...

nicLOR CMS (sezione_news.php) Remote SQL Injection Vulnerability

No description provided by source. Name : nicLOR-CMS SQL Injection Vulnerability. Author : x0kster Email : [email protected] Script Download : http://www.niclor.net/prodotti/16-04-06-niclorcms.zip Date : 21/12/2007 SQL Injection in sezionenews.php ?php ... $intSezioneID = $GET'id'; ... $strSQL =...