PHP-Address Book 4.0.x Multiple SQL Injection Vulnerabilities

No description provided by source. || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ VIVA SPAIN!... GANAREMOS EL MUNDIAL!...o.O PROUD TO BE SPANISH! -------------------------------------...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in PHP Address Book 3.1.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the group parameter to 1 index.php or 2 the default URI...

CVE-2008-2565

Multiple SQL injection vulnerabilities in PHP Address Book 3.1.5 and earlier allow remote attackers to execute arbitrary SQL commands via the id parameter to 1 view.php and 2 edit.php. NOTE: it was later reported that 4.0.x is also affected...

CVE-2008-2566

Multiple cross-site scripting XSS vulnerabilities in PHP Address Book 3.1.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the group parameter to 1 index.php or 2 the default URI...

PHP-Address Book <= 3.1.5 (SQL/XSS) Multiple Vulnerabilities

No description provided by source. ============================================================ PHP-Address Book SQL/XSS Multiple Remote Vulnerabilities ============================================================ ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH...

phpaddress-sqlxss.txt

============================================================ PHP-Address Book SQL/XSS Multiple Remote Vulnerabilities ============================================================ ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...

PHP Address Book 3.1.5 - Multiple SQL Injections Cross-Site Scripting Vulnerabilities

PHP Address Book 3.1.5 - Multiple SQL Injections Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/29560/info PHP Address Book is prone to multiple cross-site scripting and SQL-injection vulnerabilities because the application fails to sufficiently sanitize...

PHP-Address Book 3.1.5 - SQL Injection Cross-Site Scripting

PHP-Address Book 3.1.5 - SQL Injection Cross-Site Scripting ============================================================ PHP-Address Book SQL/XSS Multiple Remote Vulnerabilities ============================================================ ,--^----------,--------,-----,-------^--, | |||||||||...

PHP-Address Book <= 3.1.5 (SQL/XSS) Multiple Vulnerabilities

Exploit for unknown platform in category web applications ============================================================ PHP-Address Book = 3.1.5 SQL/XSS Multiple Vulnerabilities ============================================================ ===========================================================...

PHP Address Book 3.1.5 - Multiple SQL Injections / Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/29560/info PHP Address Book is prone to multiple cross-site scripting and SQL-injection vulnerabilities because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based...

PHP-Address Book 3.1.5 - SQL Injection / Cross-Site Scripting

============================================================ PHP-Address Book SQL/XSS Multiple Remote Vulnerabilities ============================================================ ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking Team...

CVE-2002-0953

globals.php in PHP Address before 0.2f, with the PHP allowurlfopen and registerglobals variables enabled, allows remote attackers to execute arbitrary PHP code via a URL to the code in the LangCookie parameter...

CVE-2002-0953

globals.php in PHP Address before 0.2f, with the PHP allowurlfopen and registerglobals variables enabled, allows remote attackers to execute arbitrary PHP code via a URL to the code in the LangCookie parameter...

PHP source injection in PHPAddress

PHP source injection in PHPAddress Description PHP-Address is a collection of PHP3-Scripts works on PHP4 too for maintaing a small web-based address-database. It can be found at http://phpaddress.huebsch-gemacht.de/ Workaround Change the global.php3 file so it looks like this: ?php c Copyright in...

PHP-Address 0.2 e - Remote File Inclusion

source: https://www.securityfocus.com/bid/5039/info PHP-Address is prone to an issue which may allow remote attackers to include arbitrary files located on remote servers. If the remote file is a PHP script, this may allow for execution of attacker-supplied PHP code with the privileges of the...