28 matches found
EUVD-2010-2687
Malware in sbrugna...
EUVD-2010-2689
Malware in sbrugna...
EUVD-2010-2688
Malware in sbrugna...
CVE-2010-2683
SQL injection vulnerability in result.php in Customer Paradigm PageDirector CMS allows remote attackers to execute arbitrary SQL commands via the subcatid parameter...
PageDirector CMS Multiple Vulnerabilities
No description provided by source. Exploit Title : PageDirector CMS Multiple Vulnerabilities Date : 20 - 6 - 2010 Author : Tr0y-x Vendor : www.customerparadigm.com Version : All Versions Tested on : Linux Home : WwW.SeC-WaR.CoM http://www.sec-war.com/ Price : 675.00 $ loooooolz -== SQL Injection...
CVE-2010-2684
SQL injection vulnerability in index.php in Customer Paradigm PageDirector CMS allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2010-2683
SQL injection vulnerability in result.php in Customer Paradigm PageDirector CMS allows remote attackers to execute arbitrary SQL commands via the subcatid parameter...
CVE-2010-2685
siteadmin/adduser.php in Customer Paradigm PageDirector CMS does not properly restrict access, which allows remote attackers to bypass intended restrictions and add administrative users via a direct request...
Sql injection
SQL injection vulnerability in index.php in Customer Paradigm PageDirector CMS allows remote attackers to execute arbitrary SQL commands via the id parameter...
Server side request forgery (ssrf)
siteadmin/adduser.php in Customer Paradigm PageDirector CMS does not properly restrict access, which allows remote attackers to bypass intended restrictions and add administrative users via a direct request...
Sql injection
SQL injection vulnerability in result.php in Customer Paradigm PageDirector CMS allows remote attackers to execute arbitrary SQL commands via the subcatid parameter...
CVE-2010-2683
SQL injection vulnerability in result.php in Customer Paradigm PageDirector CMS allows remote attackers to execute arbitrary SQL commands via the subcatid parameter...
CVE-2010-2684
SQL injection vulnerability in index.php in Customer Paradigm PageDirector CMS allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2010-2685
siteadmin/adduser.php in Customer Paradigm PageDirector CMS does not properly restrict access, which allows remote attackers to bypass intended restrictions and add administrative users via a direct request...
CVE-2010-2685
CVE-2010-2685 concerns Customer Paradigm PageDirector CMS. The issue arises from improper access control in siteadmin/adduser.php, allowing remote attackers to bypass restrictions and add administrative users via a direct request. The vulnerability is documented with a high severity (CVSS v2 base...
CVE-2010-2683
CVE-2010-2683 relates to a SQL injection in the Customer Paradigm PageDirector CMS, specifically in result.php via the sub_catid parameter. The vulnerability allows remote attackers to execute arbitrary SQL commands. The issue affects PageDirector CMS and is described with a CVSSv2 score of 7.5 (...
CVE-2010-2684
Technical details about CVE-2010-2684 are not provided in the connected documents; no concrete affected products, versions, or remediation information is publicly available here. Monitor for updates.
PageDirector CMS (result.php) SQL Injection Vulnerability
No description provided by source. ----------------------------------------------------------------------- Author : v3n0m Site : http://yogyacarderlink.web.id/ Date : June, 29-2010 Location : Jakarta, Indonesia Time Zone : GMT +7:00 ----------------------------------------------------------------...
PageDirector CMS injection vulnerability and CSRF attacks-vulnerability warning-the black bar safety net
PageDirector the CMS program there is a SQL injection vulnerability and remote add admin user bug. SQL injection ,注入 页面 index.php: -- CSRF add admin user Backstage siteadmin/adduser. php is not verified, you can remotely add an administrator user. POC: the...
PageDirector CMS SQL Injection
/ / / \ \ \ \ \ / / \\ \ \ \ \ // /// \ \ / / \ //|\ / \ \ \ \ \ \ / / \ \ / / \ | | | \ | | || | | |/ / \ V / || |\ V / / \ | / \ | /| | | || / | | | | . | ' || / | || // \ // \|||/|||||||||\ .WEB.ID -----------------------------------------------------------------------...