EUVD-2012-1237

Malware in sbrugna...

EUVD-2012-1236

Malware in sbrugna...

CVE-2017-6528

An issue was discovered in dnaTools dnaLIMS 4-2015s13. dnaLIMS is affected by plaintext password storage the /home/dna/spool/.pfile file...

CVE-2017-6528

An issue was discovered in dnaTools dnaLIMS 4-2015s13. dnaLIMS is affected by plaintext password storage the /home/dna/spool/.pfile file. Recent assessments: h00die at March 27, 2020 4:11pm UTC reported: /home/dna/spool/.pfile is the database file for users. It is a tab delimited file, and by...

Powie pFile 1.01 SQL injection vulnerability

Exploit for php platform in category web applications +----------------------------------------------------------------------+ Exploit Title: Powie pFile 1.01 SQL injection vulnerability Google Dork: inurl:pfile/file.php?id= intext:"-- pFile 1.01 OS" Date: 22/06/2012 Exploit Author: Tunisian...

CVE-2012-1211

Cross-site scripting XSS vulnerability in pfile/kommentar.php in Powie pFile 1.02 allows remote attackers to inject arbitrary web script or HTML via the filecat parameter...

CVE-2012-1210

SQL injection vulnerability in pfile/file.php in Powie pFile 1.02 allows remote attackers to execute arbitrary SQL commands via the id parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in pfile/kommentar.php in Powie pFile 1.02 allows remote attackers to inject arbitrary web script or HTML via the filecat parameter...

Sql injection

SQL injection vulnerability in pfile/file.php in Powie pFile 1.02 allows remote attackers to execute arbitrary SQL commands via the id parameter...

pfile <= 1.02 Multiple Vulnerabilities - Active Check

pfile is prone to a cross-site scripting XSS vulnerability and an SQL injection SQLi vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

CVE-2012-1211

CVE-2012-1211: XSS in Powie pFile 1.02 via pfile/kommentar.php (filecat parameter). Affected component: Powie pFile 1.02; vulnerability described as cross-site scripting, enabling remote script/HTML injection. CVSS v2 base score 4.3 (Medium) with network attack vector, no authentication, partial ...

CVE-2012-1210

CVE-2012-1210 describes an SQL injection in Powie pFile 1.02, specifically in pfile/file.php, exploitable via the id parameter to allow remote execution of arbitrary SQL commands. The CVSS v2 base score is 7.5 (HIGH) with network access, low attack complexity, no authentication, and partial impac...

CVE-2012-1211

Cross-site scripting XSS vulnerability in pfile/kommentar.php in Powie pFile 1.02 allows remote attackers to inject arbitrary web script or HTML via the filecat parameter...

CVE-2012-1210

SQL injection vulnerability in pfile/file.php in Powie pFile 1.02 allows remote attackers to execute arbitrary SQL commands via the id parameter...

Powie pFile 1.02 - pfilefile.php?id SQL Injection

Powie pFile 1.02 - pfilefile.php?id SQL Injection source: https://www.securityfocus.com/bid/51982/info pfile is prone to a cross-site scripting vulnerability and an SQL-injection vulnerability because it fails to properly sanitize user-supplied input. Exploiting these issues could allow an attack...

Powie pFile 1.02 - pfilekommentar.php?filecat Cross-Site Scripting

Powie pFile 1.02 - pfilekommentar.php?filecat Cross-Site Scripting source: https://www.securityfocus.com/bid/51982/info pfile is prone to a cross-site scripting vulnerability and an SQL-injection vulnerability because it fails to properly sanitize user-supplied input. Exploiting these issues coul...

Powie pFile 1.02 - &#039;/pfile/file.php?id&#039; SQL Injection

source: https://www.securityfocus.com/bid/51982/info pfile is prone to a cross-site scripting vulnerability and an SQL-injection vulnerability because it fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based authentication credential...

Powie pFile 1.02 - &#039;/pfile/kommentar.php?filecat&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/51982/info pfile is prone to a cross-site scripting vulnerability and an SQL-injection vulnerability because it fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based authentication credential...

Pfile 1.02 Cross Site Scripting / SQL Injection

=============================== pfile1.02 Mullti Vulnerability =============================== Vendor: http://www.powie.de/wp-content/uploads/pfile1.02.zip Date: 2012-1-27 Author : indoushka Exploit By indoushka ------------- dork : pFile 1.02 © Thomas Schmidt, 2003 -- Thomas Ehrhardt, 2002-2011 ...