47 matches found
CVE-2005-1629
SQL injection vulnerability in member.php for Photopost PHP Pro allows remote attackers to execute arbitrary SQL commands via the verifykey parameter...
EUVD-2005-1632
Malware in sbrugna...
EUVD-2005-0930
Malware in sbrugna...
EUVD-2005-2738
Malware in sbrugna...
EUVD-2004-0239
Malware in sbrugna...
EUVD-2004-0250
Malware in sbrugna...
EUVD-2005-0929
Malware in sbrugna...
EUVD-2004-1863
Malware in sbrugna...
All Enthusiast PhotoPost PHP Pro 5.0 adm-photo.php Arbitrary Image Manipulation
No description provided by source. source: http://www.securityfocus.com/bid/12779/info PhotoPost PHP Pro is a web-based image gallery application written in PHP. It can be implemented on any platform that supports PHP script execution. Multiple remote vulnerabilities affect All Enthusiast PhotoPo...
PhotoPost PHP Pro 3.x/4.x showgallery.php Multiple Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/9994/info Multiple SQL injection, cross-site scripting and HTML injection vulnerabilities have been identified in the application, which may allow an attacker to execute arbitrary HTML or script code in a user's browser...
CVE-2005-2737
Cross-site scripting XSS vulnerability in PhotoPost PHP Pro 5.1 allows remote attackers to inject arbitrary web script or HTML via EXIF data, such as the Camera Model Tag...
CVE-2005-2737
Cross-site scripting XSS vulnerability in PhotoPost PHP Pro 5.1 allows remote attackers to inject arbitrary web script or HTML via EXIF data, such as the Camera Model Tag...
Multiple PHP Images Galleries EXIF Metadata XSS Vulnerabilities
Multiple PHP Images Galleries EXIF Metadata XSS Vulnerabilities Summary : A large majority of PHP Images Gallery Technologies now handle the Exchangeable Image File EXIF header of jpeg files. The Exchangeable Image File EXIF format is an international specification that lets imaging companies...
PhotoPost PHP Pro EXIF Data XSS
According to its banner, the version of PhotoPost PHP Pro installed on the remote web server is prone to script insertion attacks because it does not sanitize malicious EXIF data stored in image files. Using a specially crafted image file, an attacker can exploit this flaw to cause arbitrary HTML...
PhotoPost < 5.11 PHP Pro EXIF Data XSS
Binary data 3187.prm...
[SA16597] PhotoPost PHP Pro EXIF Data Script Insertion Vulnerability
---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...
CVE-2005-1629
SQL injection vulnerability in member.php for Photopost PHP Pro allows remote attackers to execute arbitrary SQL commands via the verifykey parameter...
CVE-2005-1629
SQL injection vulnerability in member.php for Photopost PHP Pro allows remote attackers to execute arbitrary SQL commands via the verifykey parameter...
CVE-2005-1629
Photopost PHP Pro contains a SQL injection in member.php via the verifykey parameter, allowing remote attackers to execute arbitrary SQL commands. Root cause: unsanitized input used in SQL queries. Affected component: Photopost PHP Pro (member.php). Exploitation status is not detailed in the prov...
PhotoPost PHP Pro < 5.02 RC4 member.php uid Parameter SQL Injection
Binary data 2903.prm...