12 matches found
EUVD-2008-5566
Malware in sbrugna...
nightfall personal diary 1.0 (xss/dd) Multiple Vulnerabilities
-----------------------------OffensiveTrack------------------------------ ---------------------------- Tunisian Muslim ------------------------------ found by : OffensiveTrack Author : AlpHaNiX website : www.offensivetrack.org contact : AlpHaATHACKERDOTBZ script : NightFall download :...
CVE-2008-5592
Nightfall Personal Diary 1.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file via a direct request for users-zza21.mdb...
CVE-2008-5591
Cross-site scripting XSS vulnerability in login.asp in Nightfall Personal Diary 1.0 allows remote attackers to inject arbitrary web script or HTML via the username parameter and possibly other "login fields." NOTE: some of these details are obtained from third party information...
Cross site scripting
Cross-site scripting XSS vulnerability in login.asp in Nightfall Personal Diary 1.0 allows remote attackers to inject arbitrary web script or HTML via the username parameter and possibly other "login fields." NOTE: some of these details are obtained from third party information...
Improper access control
Nightfall Personal Diary 1.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file via a direct request for users-zza21.mdb...
CVE-2008-5591
Cross-site scripting XSS vulnerability in login.asp in Nightfall Personal Diary 1.0 allows remote attackers to inject arbitrary web script or HTML via the username parameter and possibly other "login fields." NOTE: some of these details are obtained from third party information...
CVE-2008-5592
Nightfall Personal Diary 1.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file via a direct request for users-zza21.mdb...
CVE-2008-5592
CVE-2008-5592 affects Nightfall Personal Diary 1.0. The issue is improper access control: sensitive data is stored under the web root, allowing remote attackers to download the database file (users-zza21.mdb) via a direct request. The resulting impact is partial confidentiality loss. The availabl...
NightFall Personal Diary 1.0 (XSS/DD) Multiple Remote Vulnerabilities
Exploit for unknown platform in category web applications ===================================================================== NightFall Personal Diary 1.0 XSS/DD Multiple Remote Vulnerabilities =====================================================================...
nightfall personal diary 1.0 - Cross-Site Scripting / File Disclosure
-----------------------------OffensiveTrack------------------------------ ---------------------------- Tunisian Muslim ------------------------------ found by : OffensiveTrack Author : AlpHaNiX website : www.offensivetrack.org contact : AlpHaATHACKERDOTBZ script : NightFall download :...
NightFall Personal Diary 1.0 (XSS/DD) Multiple Remote Vulnerabilities
No description provided by source. -----------------------------OffensiveTrack------------------------------ ---------------------------- Tunisian Muslim ------------------------------ found by : OffensiveTrack Author : AlpHaNiX website : www.offensivetrack.org contact : AlpHaATHACKERDOTBZ script...