47 matches found
EUVD-2011-1547
Malware in sbrugna...
EUVD-2006-1442
Malware in sbrugna...
EUVD-2011-1557
Malware in sbrugna...
EUVD-2008-6480
Malware in sbrugna...
EUVD-2011-1556
Malware in sbrugna...
EUVD-2013-7055
Malware in sbrugna...
EUVD-2013-7066
Malware in sbrugna...
CVE-2013-7289
Multiple cross-site scripting XSS vulnerabilities in register.php in Andy's PHP Knowledgebase Aphpkb before 0.95.8 allow remote attackers to inject arbitrary web script or HTML via the 1 firstname, 2 lastname, 3 email, or 4 username parameter...
CVE-2011-1555
SQL injection vulnerability in saa.php in Andy's PHP Knowledgebase Aphpkb 0.95.3 and earlier allows remote attackers to execute arbitrary SQL commands via the aid parameter, a different vulnerability than CVE-2011-1546. NOTE: some of these details are obtained from third party information...
Chadha PHPKB Cross-Site Scripting Vulnerability (CNVD-2020-17370)
Chadha Software Technologies PHPKB Standard Multi-Language is a web-based, multi-language knowledge base management system from Chadha Software Technologies, India. A reflected cross-site scripting vulnerability exists in admin/manage-settings.php in Chadha PHPKB Standard Multi-Language version 9...
Andy's PHP Knowledgebase Project 0.95.4 - SQL Injection
No description provided by source. ------------------------------------------------------------------------ Software................Andy's PHP Knowledgebase Project 0.95.4 Vulnerability...........SQL Injection Threat Level............Critical 4/5 Download................http://www.aphpkb.org/...
Andy's PHP Knowledgebase 0.92.9 - Arbitrary File Upload Vulnerability
No description provided by source. ============================================================== Andy's PHP Knowledgebase Arbitrary File Upload Vulnerability ============================================================== ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH...
Andy's PHP Knowledgebase 0.95.2 (viewusers.php) SQL Injection
No description provided by source. 'Andy's PHP Knowledgebase' SQL Injection Vulnerability CVE-2011-1546 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- A vulnerability exists in aviewusers.php allowing for SQL injection of the 's' query parameter...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in register.php in Andy's PHP Knowledgebase Aphpkb before 0.95.8 allow remote attackers to inject arbitrary web script or HTML via the 1 firstname, 2 lastname, 3 email, or 4 username parameter...
CVE-2013-7289
The CVE identifies multiple cross-site scripting (XSS) vulnerabilities in Andy’s PHP Knowledgebase (Aphpkb) before version 0.95.8, exploitable via the register.php endpoint. Specifically, the first_name, last_name, email, or username parameters can be injected with malicious script/HTML to affect...
CVE-2013-7289
Multiple cross-site scripting XSS vulnerabilities in register.php in Andy's PHP Knowledgebase Aphpkb before 0.95.8 allow remote attackers to inject arbitrary web script or HTML via the 1 firstname, 2 lastname, 3 email, or 4 username parameter...
CVE-2013-7277
Multiple cross-site scripting XSS vulnerabilities in Andy's PHP Knowledgebase Aphpkb before 0.95.8 allow remote attackers to inject arbitrary web script or HTML via the 1 HTTP Referer header to saa.php, 2 username parameter to login.php, or 3 keywordlist parameter to keysearch.php...
Andy's PHP Knowledgebase 0.95.5 Shell Upload
Exploit Title: aphpkb 0.95.5 Remote File Upload Date: 2011 Sep 21 Author: Black.Spook H4ckcity Security Team Software Link: http://prdownloads.sourceforge.net/aphpkb/aphpkb-0.95.5.tgz?download Version: 0.95.5 Tested on: Linux Email: [email protected] Steps to exploit this vulnerability: 1-...
Andy's PHP Knowledgebase Multiple Cross-Site Scripting Vulnerabilities
This host is running Andy's PHP Knowledgebase and is prone to multiple cross site scripting vulnerabilities. OpenVAS Vulnerability Test $Id: gbaphpkbmultxssvuln.nasl 5840 2017-04-03 12:02:24Z cfi $ Andy's PHP Knowledgebase Multiple Cross-Site Scripting Vulnerabilities Authors: Sooraj KS Copyright...
Andy's PHP Knowledgebase 'step5.php' Remote PHP Code Execution Vulnerability
This host is running Andy's PHP Knowledgebase and is prone to remote PHP code execution vulnerability. OpenVAS Vulnerability Test $Id: secpodaphpkbcodeexecvuln.nasl 5840 2017-04-03 12:02:24Z cfi $ Andy's PHP Knowledgebase 'step5.php' Remote PHP Code Execution Vulnerability Authors: Sooraj KS...