EUVD-2008-0461

Malware in sbrugna...

EUVD-2008-0436

Malware in sbrugna...

PacerCMS 0.6 'id' Parameter Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/27397/info PacerCMS is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker to...

PacerCMS 0.6 (last_module) Remote Code Execution Vulnerability

No description provided by source. PacerCMS 0.6 lastmodule Remote Code Execution Vulnerability Script : http://ovh.dl.sourceforge.net/sourceforge/pacercms/pacercms0.6.zip Dork : Powered by PacerCMS POC : /includes/adodblite/adodb-perf-module.inc.php?lastmodule=t;%20class%20t;passthruls;// OR...

pacercms-exec.txt

PacerCMS 0.6 lastmodule Remote Code Execution Vulnerability Script : http://ovh.dl.sourceforge.net/sourceforge/pacercms/pacercms0.6.zip Dork : Powered by PacerCMS POC : /includes/adodblite/adodb-perf-module.inc.php?lastmodule=t;%20class%20t;passthruls;// OR INCLUDE SHELL...

PacerCMS 0.6 - last_module Remote Code Execution

PacerCMS 0.6 - lastmodule Remote Code Execution PacerCMS 0.6 lastmodule Remote Code Execution Vulnerability Script : http://ovh.dl.sourceforge.net/sourceforge/pacercms/pacercms0.6.zip Dork : Powered by PacerCMS POC :...

PacerCMS 0.6 (last_module) Remote Code Execution Vulnerability

Exploit for unknown platform in category web applications ============================================================== PacerCMS 0.6 lastmodule Remote Code Execution Vulnerability ============================================================== PacerCMS 0.6 lastmodule Remote Code Execution...

PacerCMS 0.6 - 'last_module' Remote Code Execution

PacerCMS 0.6 lastmodule Remote Code Execution Vulnerability Script : http://ovh.dl.sourceforge.net/sourceforge/pacercms/pacercms0.6.zip Dork : Powered by PacerCMS POC : /includes/adodblite/adodb-perf-module.inc.php?lastmodule=t;%20class%20t;passthruls;// OR INCLUDE SHELL...

CVE-2008-0451

Multiple SQL injection vulnerabilities in PacerCMS 0.6 allow remote authenticated users to execute arbitrary SQL commands via the id parameter to 1 siteadmin/article-edit.php; and unspecified parameters to 2 submitted-edit.php, 3 page-edit.php, 4 section-edit.php, 5 staff-edit.php, and 6...

Sql injection

Multiple SQL injection vulnerabilities in PacerCMS 0.6 allow remote authenticated users to execute arbitrary SQL commands via the id parameter to 1 siteadmin/article-edit.php; and unspecified parameters to 2 submitted-edit.php, 3 page-edit.php, 4 section-edit.php, 5 staff-edit.php, and 6...

CVE-2008-0451

CVE-2008-0451 concerns multiple SQL injection vulnerabilities in PacerCMS 0.6. The affected software is PacerCMS 0.6 (siteadmin/ scripts such as article-edit.php, submitted-edit.php, page-edit.php, section-edit.php, staff-edit.php, and staff-access.php). The underlying issue is SQL injection via ...

CVE-2008-0451

Multiple SQL injection vulnerabilities in PacerCMS 0.6 allow remote authenticated users to execute arbitrary SQL commands via the id parameter to 1 siteadmin/article-edit.php; and unspecified parameters to 2 submitted-edit.php, 3 page-edit.php, 4 section-edit.php, 5 staff-edit.php, and 6...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in submit.php in PacerCMS before 0.6.1 allow remote attackers to inject arbitrary web script or HTML via the 1 name, 2 headline, or 3 text field in a message...

CVE-2008-0426

Multiple cross-site scripting XSS vulnerabilities in submit.php in PacerCMS before 0.6.1 allow remote attackers to inject arbitrary web script or HTML via the 1 name, 2 headline, or 3 text field in a message...

CVE-2008-0426

Multiple cross-site scripting XSS vulnerabilities in submit.php in PacerCMS before 0.6.1 allow remote attackers to inject arbitrary web script or HTML via the 1 name, 2 headline, or 3 text field in a message...

CVE-2008-0426

CVE-2008-0426 concerns multiple XSS vulnerabilities in PacerCMS before 0.6.1, exploitable via the name, headline, or text fields in submit.php within a message. The underlying issue is a failure to adequately sanitize user input, enabling remote attackers to inject arbitrary web script or HTML. T...

pacercms-sqlxss.txt

PacerCMS Multiple Vulnerabilities XSS/SQL. -------------------------------------------------------- Product: PacerCMS Version: 0.6 Vendor: http://pacercms.sourceforge.net/ Date: 01/22/08 - Introduction PacerCMS is a content management solution for student and non-daily community newspapers. -...

PacerCMS Multiple Vulnerabilities (XSS/SQL)

PacerCMS Multiple Vulnerabilities XSS/SQL. -------------------------------------------------------- Product: PacerCMS Version: 0.6 Vendor: http://pacercms.sourceforge.net/ Date: 01/22/08 - Introduction PacerCMS is a content management solution for student and non-daily community newspapers. -...

PacerCMS 0.6 - id Multiple SQL Injections

PacerCMS 0.6 - id Multiple SQL Injections source: https://www.securityfocus.com/bid/27397/info PacerCMS is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an...

PacerCMS 0.6 - 'id' Multiple SQL Injections

source: https://www.securityfocus.com/bid/27397/info PacerCMS is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker to compromise the application, acces...