CVE-2006-3572

SQL injection vulnerability in forumthread.php in Papoo 3 RC3 and earlier allows remote attackers to execute arbitrary SQL commands via the msgid parameter...

CVE-2006-3571

Multiple cross-site scripting XSS vulnerabilities in interna/hilfe.php in Papoo 3 RC3 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 titel or 2 ausgabe parameters...

EUVD-2006-3566

Multiple cross-site scripting XSS vulnerabilities in interna/hilfe.php in Papoo 3 RC3 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 titel or 2 ausgabe parameters...

papoo3rc3.php.txt

!/usr/bin/php -q -d shortopentag=on ? echo "PAPOO = 3RC3 SQL injection / admin credentials disclosure\n"; echo "by rgod [email protected]\n"; echo "site: http://retrogod.altervista.org\n"; echo "dork: "Help Contact Imprint Sitemap" | "powered by papoo" | "powered by cms papoo"\n\n"; / notes:...

CVE-2006-1918

Multiple cross-site scripting XSS vulnerabilities in Papoo 2.1.5 allow remote attackers to inject arbitrary web script or HTML via the menuid parameter to 1 index.php or 2 forum.php, or the 3 reporeidprint parameter to print.php...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Papoo 2.1.5 allow remote attackers to inject arbitrary web script or HTML via the menuid parameter to 1 index.php or 2 forum.php, or the 3 reporeidprint parameter to print.php...

CVE-2006-1918

CVE-2006-1918 affects Papoo 2.1.5. The vulnerability is multiple cross-site scripting (XSS) flaws exploitable via the menuid parameter in index.php or forum.php, and the reporeid_print parameter in print.php. The root cause is improper sanitization of input leading to script/HTML injection. Docum...

CVE-2006-1918

Multiple cross-site scripting XSS vulnerabilities in Papoo 2.1.5 allow remote attackers to inject arbitrary web script or HTML via the menuid parameter to 1 index.php or 2 forum.php, or the 3 reporeidprint parameter to print.php...

Vulnerabilities in Papoo

k k kkkk kk kkkk k k kkkkkk kkkkkk kkkk k k k k k k k k k k k k k k kk k k k k kk k k k k kk kkkkk k kkkkk kk kk kkkkkk k k k k k k kk k k k k k k k kk k k k k k k k k k k k k kkkk kk kkkk k k kk k k kkkk k kk k k k =- Vulnerabilities in Papoo Author : Rusydi Hasan M a.k.a : cR45H3R Date :...

Papoo 2.1.x - print.php Cross-Site Scripting

Papoo 2.1.x - print.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17530/info Papoo is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the...

Papoo 2.1.x - 'print.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17530/info Papoo is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in the context o...

Sql injection

Multiple SQL injection vulnerabilities in Papoo 2.1.5, and 3 beta1 and earlier, allow remote attackers to execute arbitrary SQL commands via the 1 getlang and 2 reporeid parameter in a index.php, 3 menuid parameter in b plugin.php and c forumthread.php, and 4 msgid parameter in forumthread.php...

CVE-2006-1766

Multiple SQL injection vulnerabilities in Papoo 2.1.5, and 3 beta1 and earlier, allow remote attackers to execute arbitrary SQL commands via the 1 getlang and 2 reporeid parameter in a index.php, 3 menuid parameter in b plugin.php and c forumthread.php, and 4 msgid parameter in forumthread.php...

CVE-2006-1766

Multiple SQL injection vulnerabilities in Papoo 2.1.5, and 3 beta1 and earlier, allow remote attackers to execute arbitrary SQL commands via the 1 getlang and 2 reporeid parameter in a index.php, 3 menuid parameter in b plugin.php and c forumthread.php, and 4 msgid parameter in forumthread.php...

CVE-2006-1766

Papoo is affected by SQL injection vulnerabilities in versions 2.1.5 and 3 beta1 and earlier. The flaws allow remote attackers to inject arbitrary SQL via (1) index.php parameters getlang and reporeid, (2) plugin.php and (c) forumthread.php parameter menuid, and (4) forumthread.php parameter msgi...

Papoo Multiple SQL vuln.

Papoo Multiple SQL vuln. Vuln. discovered by : r0t Date: 10 april 2006 vendor:http://www.papoo.de/ affected versions: 2.1.5 & 3 beta1 and previous Vuln. description: Papoo contains a flaw that allows a remote sql injection attacks.Inputpassed to the "getlang","reporeid" parameters in " index.php"...

Papoo 2.1.x - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/16573/info Papoo is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in the browser of an unsuspecti...

CVE-2006-0569

Cross-site scripting XSS vulnerability in userclass.php in Papoo 2.1.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the username field during the registration of a new account. NOTE: the provenance of this information is unknown; the details are obtained solely...

CVE-2006-0569

Cross-site scripting XSS vulnerability in userclass.php in Papoo 2.1.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the username field during the registration of a new account. NOTE: the provenance of this information is unknown; the details are obtained solely...

CVE-2006-0569

Papoo 2.1.4 and earlier contain a Cross-site scripting (XSS) vulnerability in user_class.php that allows remote attackers to inject arbitrary web script or HTML via the username field during new account registration. The flaw is documented across multiple sources (NVD, CVE list, and related recor...