EUVD-2009-4283

Malware in sbrugna...

Nuggetz CMS 1.0 - Remote Code Execution

No description provided by source...

Cross-site Scripting (XSS) Vulnerability in Nuggetz CMS

High-Tech Bridge SA Security Research Lab has discovered vulnerability in Nuggetz CMS which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in Nuggetz CMS The vulnerability exists due to input sanitation error in the "pagevalue" parameter in...

CVE-2009-4315

Directory traversal vulnerability in admin/ajaxsave.php in Nuggetz CMS 1.0, when magicquotesgpc is disabled, allows remote attackers to create or modify arbitrary files via a .. dot dot in the nugget parameter and a modified pagevalue parameter, as demonstrated by creating and accessing a .php fi...

Directory traversal

Directory traversal vulnerability in admin/ajaxsave.php in Nuggetz CMS 1.0, when magicquotesgpc is disabled, allows remote attackers to create or modify arbitrary files via a .. dot dot in the nugget parameter and a modified pagevalue parameter, as demonstrated by creating and accessing a .php fi...

CVE-2009-4315

Directory traversal vulnerability in admin/ajaxsave.php in Nuggetz CMS 1.0, when magicquotesgpc is disabled, allows remote attackers to create or modify arbitrary files via a .. dot dot in the nugget parameter and a modified pagevalue parameter, as demonstrated by creating and accessing a .php fi...

CVE-2009-4315

CVE-2009-4315 : Directory traversal vulnerability in Nuggetz CMS 1.0 (admin/ajaxsave.php) allows remote attackers to create or modify arbitrary files via a .. payload in the nugget parameter and a modified pagevalue parameter, leading to execution of arbitrary PHP code by accessing a created .php...

Remote Code Execution in Nuggetz CMS 1.0

No description provided by source. Remote Code Execution in Nuggetz CMS 1.0 Name Remote Code Execution in Nuggetz CMS Systems Affected Nuggetz CMS 1.0 site http://www.nuggetz.co.uk/ Author Amol Naik amolnaik4atgmail.com Date 10/12/2009 OVERVIEW Nuggetz CMS 1.0 is vulnerable to Remote Code...

Nuggetz CMS 1.0 - Remote Code Execution

Remote Code Execution in Nuggetz CMS 1.0 Name Remote Code Execution in Nuggetz CMS Systems Affected Nuggetz CMS 1.0 site http://www.nuggetz.co.uk/ Author Amol Naik amolnaik4atgmail.com Date 10/12/2009 OVERVIEW Nuggetz CMS 1.0 is vulnerable to Remote Code Execution. Technical Details Vulnerable...

Nuggetz CMS 1.0 Code Execution

Remote Code Execution in Nuggetz CMS 1.0 Name Remote Code Execution in Nuggetz CMS Systems Affected Nuggetz CMS 1.0 site http://www.nuggetz.co.uk/ Author Amol Naik amolnaik4atgmail.com Date 10/12/2009 OVERVIEW Nuggetz CMS 1.0 is vulnerable to Remote Code Execution. Technical Details Vulnerable...

CMS <= 1.0 Remote Code Execution in Nuggetz

Exploit for unknown platform in category web applications =========================================== CMS This file is used to save any changes done in nugget. The parameter 'nugget' is used to call the file for ex. support.nugget, which is at /webdir/data/. The changed values are written back to...

Nuggetz CMS 1.0 - Remote Code Execution

Nuggetz CMS 1.0 - Remote Code Execution Remote Code Execution in Nuggetz CMS 1.0 Name Remote Code Execution in Nuggetz CMS Systems Affected Nuggetz CMS 1.0 site http://www.nuggetz.co.uk/ Author Amol Naik amolnaik4atgmail.com Date 10/12/2009 OVERVIEW Nuggetz CMS 1.0 is vulnerable to Remote Code...