60 matches found
EUVD-2009-2593
Malware in sbrugna...
EUVD-2009-0483
Malware in sbrugna...
EUVD-2009-0456
Malware in sbrugna...
EUVD-2009-0457
Malware in sbrugna...
EUVD-2009-2033
Malware in sbrugna...
CVE-2009-0479
Multiple SQL injection vulnerabilities in admin/adminlogin.php in Online Grades 3.2.4 allow remote attackers to execute arbitrary SQL commands via the 1 uname or 2 pword parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
Online Grades Detection (HTTP)
HTTP based detection of Online Grades. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.146181";...
Online Grades & Attendance 3.2.6 Credentials Changer SQL Exploit
No description provided by source. !/usr/bin/perl || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ¡VIVA SPAIN!...¡GANAREMOS EL MUNDIAL!...o.O ¡PROUD TO BE SPANISH!...
Online Grades & Attendance 3.2.6 - Multiple SQL Injection Vulnerabilities
No description provided by source. || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ¡VIVA SPAIN!...¡GANAREMOS EL MUNDIAL!...o.O ¡PROUD TO BE SPANISH! --...
Online Grades & Attendance 3.2.6 - Multiple Local File Inclusion Vulns
No description provided by source. || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ¡VIVA SPAIN!...¡GANAREMOS EL MUNDIAL!...o.O ¡PROUD TO BE SPANISH! --...
Online Grades & Attendance 3.2.6 - Blind SQL Injection Exploit
No description provided by source. !/usr/bin/perl || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ¡VIVA SPAIN!...¡GANAREMOS EL MUNDIAL!...o.O ¡PROUD TO BE SPANISH!...
Online Grades Project Team 3.2.5 Cross Site Scripting
Online Grades 3.2.5 Multiple XSS Vulnerabilites Vendor: Online Grades Project Team Product web page: http://www.onlinegrades.org Affected version: 3.2.5 Summary: Online Grades is the leading free-software project that allows K-12+ student grades attendance information to be posted onto a dynamic...
Online Grades 3.2.5 Multiple XSS Vulnerabilities
Summary Online Grades is the leading free-software project that allows K-12+ student grades attendance information to be posted onto a dynamic web site. Description Online Grades suffers from multiple cross-site scripting vulns. The issue is triggered when input passed via multiple parameters to...
Online Grades 3.2.5 - Multiple Cross-Site Scripting Vulnerabilities
Online Grades 3.2.5 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/48875/info Online Grades is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to...
Online Grades 3.2.5 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/48875/info Online Grades is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user ...
Sql injection
Multiple SQL injection vulnerabilities in Online Grades & Attendance 3.2.6 and earlier allow 1 remote attackers to execute arbitrary SQL commands via the key parameter in a resetpass action to index.php and 2 remote authenticated users to execute arbitrary SQL commands via the ADD parameter in a...
CVE-2009-2598
CVE-2009-2598 affects Online Grades & Attendance 3.2.6 and earlier. The vulnerability stems from multiple SQL injection flaws: (1) via the key parameter in a resetpass action to index.php (remote unauthenticated access) and (2) via the ADD parameter in a mailto action to parents/parents.php (remo...
CVE-2009-2598
Multiple SQL injection vulnerabilities in Online Grades & Attendance 3.2.6 and earlier allow 1 remote attackers to execute arbitrary SQL commands via the key parameter in a resetpass action to index.php and 2 remote authenticated users to execute arbitrary SQL commands via the ADD parameter in a...
Directory traversal
Multiple directory traversal vulnerabilities in Online Grades & Attendance 3.2.5 and earlier, and possibly 3.2.6, when registerglobals is enabled, allow remote attackers to include and execute arbitrary local files via a .. dot dot in the 1 GLOBALSSKIN parameter to index.php and the 2 skin...
CVE-2009-2037
Multiple directory traversal vulnerabilities in Online Grades & Attendance 3.2.5 and earlier, and possibly 3.2.6, when registerglobals is enabled, allow remote attackers to include and execute arbitrary local files via a .. dot dot in the 1 GLOBALSSKIN parameter to index.php and the 2 skin...