EUVD-2009-4851

Malware in sbrugna...

PHORTAIL 1.2.1 'poster.php' Multiple HTML Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/34038/info PHORTAIL is prone to multiple HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code could run in the context of the affected site...

CVE-2009-4888

Cross-site scripting XSS vulnerability in poster.php in PHortail 1.2.1 allows remote attackers to inject arbitrary web script or HTML via the 1 pseudo, 2 email, 3 ti, and 4 txt parameters...

CVE-2009-4888

Cross-site scripting XSS vulnerability in poster.php in PHortail 1.2.1 allows remote attackers to inject arbitrary web script or HTML via the 1 pseudo, 2 email, 3 ti, and 4 txt parameters...

CVE-2009-4888

CVE-2009-4888 is an XSS vulnerability in PHortail 1.2.1 affecting poster.php. The issue allows remote attackers to inject arbitrary web script or HTML via four parameters: (1) pseudo, (2) email, (3) ti, and (4) txt. Affected software: PHortail 1.2.1; vulnerability type: Cross‑site scripting. The ...

PHORTAIL 1.2.1 - poster.php Multiple HTML Injection Vulnerabilities

PHORTAIL 1.2.1 - poster.php Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/34038/info PHORTAIL is prone to multiple HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code could run i...

PHORTAIL 1.2.1 - 'poster.php' Multiple HTML Injection Vulnerabilities

source: https://www.securityfocus.com/bid/34038/info PHORTAIL is prone to multiple HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code could run in the context of the affected site, potentially allowing the attacke...

Phortail 1.2.1 Cross Site Scripting

PHORTAIL v1.2.1 XSS Vulnerability Module : PHORTAIL 1.2.1 download : http://www.phpscripts-fr.net/scripts/download.php?id=330 Vul : XSS Vulnerability file : poster.php Author : Jonathan Salwan Mail : submit AT shell-storm.org Web : http://www.shell-storm.org =Pseudo =E-mail alert'xss PoC';"=XSS...

PHP-Nuke 5.5 , Phortail 1.2.1 , Avotravis 2.1

PHP-Nuke 5.5 - Cross Site Scripting - Bad use of cookies. More details : In french : http://www.ifrance.com/kitetoua/tuto/PHPNuke55.txt Translated by Google : http://translate.google.com/translate?u=http3A 2F2Fwww.ifrance.com2Fkitetoua2Ftuto 2FPHPNuke55.txt&langpair=fr7Cen&hl=en&prev=...

Security holes in two PHP services.

The first one is poll "avotravis " versions 2.1 and less. 1 Distortion of the limitations of multiple votes : Set the cookie with the name "alreadyvoted" and value "1" to the url /avotravis.php3?vote=1 for "yes" and /avotravis.php3?vote=1 for "no". 2 Access to the part administration : Set the...