22 matches found
EUVD-2009-3640
Malware in sbrugna...
EUVD-2009-3641
Malware in sbrugna...
EUVD-2009-3639
Malware in sbrugna...
nullam blog 0.1.2 (lfi/fd/sql/xss) Multiple Vulnerabilities
No description provided by source. -- Salvatore Fresta aka drosophila CWNP444351 Salvatore drosophila Fresta + Application: Nullam Blog + Version: 0.1.2 + Website: http://nullam.net/ + Bugs: A Local File Inclusion B File Disclosure C Multiple Blind SQL Injection D SQL Injection E Reflected XSS +...
Nullam Blog Multiple Vulnerabilities
Nullam Blog is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Sql injection
Multiple SQL injection vulnerabilities in index.php in Nullam Blog 0.1.2 allow remote attackers to execute arbitrary SQL commands via the 1 i parameter or 2 v parameters in a register action...
CVE-2009-3666
Cross-site scripting XSS vulnerability in index.php in Nullam Blog 0.1.2 allows remote attackers to inject arbitrary web script or HTML via the e parameter in an error action...
Directory traversal
Multiple directory traversal vulnerabilities in index.php in Nullam Blog 0.1.2 allow remote attackers to include or execute arbitrary files via a .. dot dot in the 1 p and 2 s parameters...
CVE-2009-3664
Multiple directory traversal vulnerabilities in index.php in Nullam Blog 0.1.2 allow remote attackers to include or execute arbitrary files via a .. dot dot in the 1 p and 2 s parameters...
CVE-2009-3665
Multiple SQL injection vulnerabilities in index.php in Nullam Blog 0.1.2 allow remote attackers to execute arbitrary SQL commands via the 1 i parameter or 2 v parameters in a register action...
CVE-2009-3666
Cross-site scripting XSS vulnerability in index.php in Nullam Blog 0.1.2 allows remote attackers to inject arbitrary web script or HTML via the e parameter in an error action...
CVE-2009-3665
Multiple SQL injection vulnerabilities in index.php in Nullam Blog 0.1.2 allow remote attackers to execute arbitrary SQL commands via the 1 i parameter or 2 v parameters in a register action...
CVE-2009-3666
CVE-2009-3666: Nullam Blog 0.1.2 is affected by a Cross-site scripting (XSS) vulnerability in index.php, exploitable via the e parameter in an error action. The OpenVAS entry labels it as part of "Nullam Blog Multiple Vulnerabilities" with CVSS base 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P). Documents exp...
CVE-2009-3665
CVE-2009-3665 refers to multiple SQL injection vulnerabilities in Nullam Blog 0.1.2. The flaw is in the site’s index.php, specifically in the register action, where the parameters (1) i and (2) v can be exploited to execute arbitrary SQL commands remotely. The vulnerability is described with a ba...
CVE-2009-3664
Multiple directory traversal vulnerabilities in index.php in Nullam Blog 0.1.2 allow remote attackers to include or execute arbitrary files via a .. dot dot in the 1 p and 2 s parameters...
CVE-2009-3664
CVE-2009-3664 affects Nullam Blog 0.1.2. The vulnerability is a directory traversal in index.php that allows remote attackers to include or execute arbitrary files via a .. in the p or s parameters. This can lead to partial impacts on confidentiality, integrity, and availability (per CVSS 2.0 bas...
nullam blog 0.1.2 - Local File Inclusion File Disclosure SQL Injection Cross-Site Scripting
nullam blog 0.1.2 - Local File Inclusion File Disclosure SQL Injection Cross-Site Scripting -- Salvatore Fresta aka drosophila CWNP444351 Salvatore "drosophila" Fresta + Application: Nullam Blog + Version: 0.1.2 + Website: http://nullam.net/ + Bugs: A Local File Inclusion B File Disclosure C...
Nullam Blog 0.1.2 LFI / XSS / SQL Injection
-- Salvatore Fresta aka drosophila CWNP444351 Salvatore "drosophila" Fresta + Application: Nullam Blog + Version: 0.1.2 + Website: http://nullam.net/ + Bugs: A Local File Inclusion B File Disclosure C Multiple Blind SQL Injection D SQL Injection E Reflected XSS + Exploitation: Remote + Date: 10 S...
Nullam Blog 0.1.2 (LFI/FD/SQL/XSS) Multiple Remote Vulnerabilities
No description provided by source. -- Salvatore Fresta aka drosophila CWNP444351 Salvatore "drosophila" Fresta + Application: Nullam Blog + Version: 0.1.2 + Website: http://nullam.net/ + Bugs: A Local File Inclusion B File Disclosure C Multiple Blind SQL Injection D SQL Injection E Reflected XSS ...
nullam blog 0.1.2 - Local File Inclusion / File Disclosure / SQL Injection / Cross-Site Scripting
-- Salvatore Fresta aka drosophila CWNP444351 Salvatore "drosophila" Fresta + Application: Nullam Blog + Version: 0.1.2 + Website: http://nullam.net/ + Bugs: A Local File Inclusion B File Disclosure C Multiple Blind SQL Injection D SQL Injection E Reflected XSS + Exploitation: Remote + Date: 10 S...