42 matches found
EUVD-2005-3943
Malware in sbrugna...
EUVD-2006-4486
Malware in sbrugna...
EUVD-2011-4724
Malware in sbrugna...
EUVD-2011-3727
Malware in sbrugna...
EUVD-2006-6596
Malware in sbrugna...
EUVD-2011-4725
Malware in sbrugna...
CVE-2011-4807
Directory traversal vulnerability in main.php in phpAlbum 0.4.1.16 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the var1 parameter...
CVE-2011-4806
Multiple cross-site scripting XSS vulnerabilities in main.php in phpAlbum 0.4.1.16 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 var1 and 2 keyword parameters...
phpAlbum <= 0.4.1 Beta 6 (language.php) Local File Inclusion Exploit
No description provided by source. ? print ' ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+ +:+ +:+...
PHPAlbum 0.2.2/0.2.3/4.1 Language.PHP File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/17526/info phpAlbum is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary remote PHP code on an affected compute...
PHPAlbum 0.2.3/4.1 - Local File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15651/info phpAlbum is prone to a local file-include vulnerability. An attacker may leverage this issue to execute arbitrary server-side script code that resides on an affected computer with the privileges of the webserve...
CVE-2011-4806
Multiple cross-site scripting XSS vulnerabilities in main.php in phpAlbum 0.4.1.16 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 var1 and 2 keyword parameters...
CVE-2011-4807
Directory traversal vulnerability in main.php in phpAlbum 0.4.1.16 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the var1 parameter...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in main.php in phpAlbum 0.4.1.16 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 var1 and 2 keyword parameters...
Directory traversal
Directory traversal vulnerability in main.php in phpAlbum 0.4.1.16 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the var1 parameter...
CVE-2011-4807
CVE-2011-4807: A directory traversal flaw in phpAlbum 0.4.1.16 and earlier affects main.php, allowing remote attackers to read arbitrary files via .. in the var1 parameter. This is supported by multiple sources (NVD/Red Hat/CVE List) and an exploit-db entry exists. Affected software: phpAlbum (sp...
CVE-2011-4806
Affected product: phpAlbum (version 0.4.1.16 and earlier). Vulnerability: Multiple cross-site scripting (XSS) flaws in main.php allow remote injection of arbitrary web script or HTML via (1) var1 and (2) keyword parameters. Root cause: insufficient input sanitization in main.php. Impact: As descr...
CVE-2011-4807
Directory traversal vulnerability in main.php in phpAlbum 0.4.1.16 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the var1 parameter...
phpAlbum Multiple Security Vulnerabilities
phpAlbum is prone to an arbitrary-file-download vulnerability, multiple cross-site scripting vulnerabilities, and multiple PHP code- injection vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker can exploit these issues to execute arbitrary script code in the...
phpAlbum Multiple Security Vulnerabilities
phpAlbum is prone to an arbitrary-file-download vulnerability, multiple cross-site scripting vulnerabilities, and multiple PHP code- injection vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker can exploit these issues to execute arbitrary script code in the...