VulnCheck KEV: CVE-2019-5434

An attacker could send a specifically crafted payload to the XML-RPC invocation script and trigger the unserialize call on the "what" parameter in the "openads.spc" RPC method. Such vulnerability could be used to perform various types of attacks, e.g. exploit serialize-related PHP vulnerabilities...

EUVD-2007-0475

Malware in sbrugna...

EUVD-2007-0365

Malware in sbrugna...

EUVD-2007-2042

Malware in sbrugna...

EUVD-2007-2041

Malware in sbrugna...

EUVD-2008-0645

Malware in sbrugna...

CVE-2019-5434

An attacker could send a specifically crafted payload to the XML-RPC invocation script and trigger the unserialize call on the "what" parameter in the "openads.spc" RPC method. Such vulnerability could be used to perform various types of attacks, e.g. exploit serialize-related PHP vulnerabilities...

Openads (phpAdsNew) <=c 2.0.8 'lib-remotehost.inc.php' Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/25277/info Openads formerly known as phpAdsNew is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the...

Multiple Products 'banner.swf' Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/38732/info Multiple products are prone to a cross-site scripting vulnerability because the applications fail to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code i...

openads-2.0.11 - Remote File Inclusion Vulnerability

No description provided by source. Exploit Title: Openads-2.0.11 Remote File inclusion Vulnerability Google Dork: Just open you eyes ; Date: 02/09/2011 Author: HaCkErS eV!L E-mail:[email protected] Software Link:...

openads-2.0.11 - Remote File Inclusion

openads-2.0.11 - Remote File Inclusion Exploit Title: Openads-2.0.11 Remote File inclusion Vulnerability Google Dork: Just open you eyes ; Date: 02/09/2011 Author: HaCkErS eV!L E-mail:[email protected] Software Link:...

openads-2.0.11 - Remote File Inclusion

Exploit Title: Openads-2.0.11 Remote File inclusion Vulnerability Google Dork: Just open you eyes ; Date: 02/09/2011 Author: HaCkErS eV!L E-mail:[email protected] Software Link: http://sourceforge.net/projects/phpadsnew/files/Current%20Release/Openads%202.0.11-pr1/Openads-2.0.11-pr1.zip/download...

Openads 2.0.11 Remote File Inclusion

Exploit Title: Openads-2.0.11 Remote File inclusion Vulnerability Google Dork: Just open you eyes ; Date: 02/09/2011 Author: HaCkErS eV!L E-mail:[email protected] Software Link: http://sourceforge.net/projects/phpadsnew/files/Current%20Release/Openads%202.0.11-pr1/Openads-2.0.11-pr1.zip/download...

Openads-2.0.11 Remote File inclusion Vulnerability

Exploit for php platform in category web applications Exploit Title: Openads-2.0.11 Remote File inclusion Vulnerability Google Dork: Just open you eyes ; Date: 02/09/2011 Author: HaCkErS eV!L E-mail:email protected Software Link:...

Поиск уязвимостей в веб приложениях

В этой статье я собрал интересные на мой взгляд ошибки в php скриптах. Но для начала, описание некоторых параметров PHP-интерпретатора: Цитата: registerglobals = ON - все переменные регистрируются как глобальные; magicquotesgpc = ON - в массивах POST, GET, COOKIE экранируются кавычки и опасные...

phpAdsNew / OpenAds / OpenX XSS

Hello Bugtraq! I want to warn you about vulnerability in phpAdsNew, OpenAds and OpenX. Earlier I already wrote to the list about XSS and HTML Injection vulnerabilities in tagcloud.swf in multiple plugins for many engines such as WordPress, Joomla and DLE. About this issue I wrote in details in my...

Multiple Products 'banner.swf' Cross-Site Scripting Vulnerability

Exploit for unknown platform in category web applications ================================================================= Multiple Products 'banner.swf' Cross-Site Scripting Vulnerability ================================================================= Vulnerable: phpAdsNew phpAdsNew 2.0.8 -pr...

(Multiple Products) - banner.swf Cross-Site Scripting

Multiple Products - banner.swf Cross-Site Scripting source: https://www.securityfocus.com/bid/38732/info Multiple products are prone to a cross-site scripting vulnerability because the applications fail to properly sanitize user-supplied input. An attacker may leverage this issue to execute...

(Multiple Products) - &#039;banner.swf&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/38732/info Multiple products are prone to a cross-site scripting vulnerability because the applications fail to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...

Vulnerability in phpAdsNew, OpenAds and OpenX

Здравствуйте 3APA3A! Сообщаю вам о Cross-Site Scripting уязвимости в системах phpAdsNew, OpenAds та OpenX. В баннерных системах phpAdsNew, OpenAds и OpenX возможна XSS атака через параметр clickTAG во флеш баннерах. О подобных уязвимостях я писал в своей статье XSS уязвимости в 8 миллионах флеш...