13 matches found
EUVD-2008-6607
Malware in sbrugna...
CVE-2008-6645
Cross-site scripting XSS vulnerability in Opencosmo VisualSentinel 0.7 allows remote attackers to inject arbitrary web script or HTML via the User-Agent header $SERVER 'HTTPUSERAGENT', which is not properly handled when displaying log files...
Cross site scripting
Cross-site scripting XSS vulnerability in Opencosmo VisualSentinel 0.7 allows remote attackers to inject arbitrary web script or HTML via the User-Agent header $SERVER 'HTTPUSERAGENT', which is not properly handled when displaying log files...
CVE-2008-6645
Opencosmo VisualSentinel 0.7 contains an XSS vulnerability when processing the User-Agent header ($_SERVER['HTTP_USER_AGENT']), which is displayed in log files. This could allow injection of arbitrary script/HTML. The NVD reports CVSSv2 base score 4.3 (MEDIUM). No remediation details are provided...
CVE-2008-6645
Cross-site scripting XSS vulnerability in Opencosmo VisualSentinel 0.7 allows remote attackers to inject arbitrary web script or HTML via the User-Agent header $SERVER 'HTTPUSERAGENT', which is not properly handled when displaying log files...
visualsentinel-cas.txt
VisualSentinel 0.7 Cross Agent Scripting Discovered by: Alfredo Panzera, Opencosmo Security Software vendor: http://www.opencosmo.com Date: 31-05-2008 Vulnerability: The vulnerability consists on inject javascript code falsify the user agent's attacker during an attack and then save in the log th...
VisualSentinel 0.7 Cross Agent Scripting Vulnerability
VisualSentinel 0.7 Cross Agent Scripting Discovered by: Alfredo Panzera, Opencosmo Security Software vendor: http://www.opencosmo.com Date: 31-05-2008 Vulnerability: The vulnerability consists on inject javascript code falsify the user agent's attacker during an attack and then save in the log th...
phpBB2 2.0.22 Cross Site Scripting Vulnerability
Opencosmo Security http://www.opencosmo.com Author: Alfredo Panzera, Opencosmo Security Vendor: phpBB.com Version: 2.0.22 Exploit: Go to http://website/forum/admin/admingroups.php and into 'Group description:' insert your XSS...
phpbb2022-xss.txt
Opencosmo Security http://www.opencosmo.com Author: Alfredo Panzera, Opencosmo Security Vendor: phpBB.com Version: 2.0.22 Exploit: Go to http://website/forum/admin/admingroups.php and into 'Group description:' insert your XSS...
vigilecms-exec.txt
Opencosmo Security http://www.opencosmo.com http://www.opencosmo.com/news.php?readmore=15 VigileCMS = 1.8 Stealth Remote Command Execution Exploit Crediti: The:Paradox Applicazione: VigileCMS Versione: 1.8 Impatto: Remote Command Execution Rischio: 3/5 Exploit: !/usr/bin/python -- coding:...
talkback-rfi.txt
Opencosmo Security http://www.opencosmo.com ================================================================================================================================== TalkBack 2.2.7 Remote File Include Vulnerability Software : TalkBack version 2.2.7 Developer :...
VigileCMS <= 1.8 Stealth Remote Command Execution Exploit
Opencosmo Security http://www.opencosmo.com http://www.opencosmo.com/news.php?readmore=15 VigileCMS = 1.8 Stealth Remote Command Execution Exploit Crediti: The:Paradox Applicazione: VigileCMS Versione: 1.8 Impatto: Remote Command Execution Rischio: 3/5 Exploit: !/usr/bin/python -- coding:...
Ucms <= 1.8 Backdoor Remote Command Execution Exploit
Opencosmo Security http://www.opencosmo.com html !-- Ucms 1.4, 1.7, 1.8+?all Non Public exploit by 2ІhotІ2 a.k.a D4m14n and shadowleet Contact: [email protected] Or [email protected] Short description: Ucms is a warez-cms coded by madmax, he selled the cms for 150 Euro for one cms, but...