PhpBB2 Custom Mass PM 1.4.7 Cross Site Scripting

------------------------------------------------------------------------------- 0 | | | | | | TM 1 | | | | | | 0 | / | ' \ / | ' \ / |/ | |/ / \ '| ' \ / \ | 1 / / | | | | / | | | | | | | alertdocument.cookie -------------------- ^ Vulnearble code -------------------- $tousernamearray = explode...

PhpBB2 Module "Custom Mass PM" Cross Site Scripting Vulnerability

Exploit for php platform in category web applications ------------------------------------------------------------------------------- 0 | | | | | | TM 1 | | | | | | 0 | / | ' \ / | ' \ / |/ | |/ / \ '| ' \ / \ | 1 / / | | | | / | | | | | | | alertdocument.cookie -------------------- ^ Vulnearble...

phpBB2 Files Uploader Mod <= 0.1.5 Shell Upload Vulnerability

Exploit for php platform in category web applications ============================================================= phpBB2 Files Uploader Mod Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : Inj3ct0r.com 0 1 + Support e-mail : submitatinj3ct0r.com 1 0 0 ...

phpBB2 Portal Mod XSS Vulnerability

=================================== phpBB2 Portal Mod XSS Vulnerability =================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' /' / /' 0 0 /, // ,/ / 1 1 // /' / // /' / /' 0 0 / / / / / / 1 1 / / 0 0 ////// // // // // // 1 1 / Explo...

phpBB2 Portal Mod XSS Vulnerability

Exploit for php platform in category web applications =================================== phpBB2 Portal Mod XSS Vulnerability =================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1...

phpBB2 Plus 1.53 (kb.php?mode) SQL Injection Vulnerability

Exploit for unknown platform in category web applications ========================================================== phpBB2 Plus 1.53 kb.php?mode SQL Injection Vulnerability ========================================================== Author : Gamoscu Homepage : http://www.1923turk.com Blog :...

PHPBB2 Plus 1.53 - &#039;kb.php&#039; SQL Injection

source: https://www.securityfocus.com/bid/38828/info phpBB2 Plus is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

phpBB2 Plus 1.53 SQL Injection

phpBB2 Plus 1.53 kb.php?mode SQL Injection Vulnerability Author : Gamoscu Homepage : http://www.1923turk.com Blog : http://gamoscu.wordpress.com/ Dork : inurl:kb.php?mode=cat&cat= Vulnerable File kb.php?mode=cat&cat= SQL XpL -1+union+select+1,concatuserid,char58,username,...

PHPBB2 Plus 1.53 - kb.php SQL Injection

PHPBB2 Plus 1.53 - kb.php SQL Injection source: https://www.securityfocus.com/bid/38828/info phpBB2 Plus is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

phpBB2-Plus 1.52 跨站脚本漏洞

No description provided by source...

PNphpBB2 1.2i Local File Inclusion

+=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=+=--=--=--=--=--=-+ | PNphpBB2 = 1.2i ModName Multiple LFI Vulnerabilities | Note | +=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=+=--=--=--=--=--=-+ | discovered by athos - stakerathotmaildotit | register glob 1 | |...

Gallery 1.5.7, 1.6-alpha3 (phpEx) Local File Inclusion Vulnerability

No description provided by source. Digital Security Research Group DSecRG Advisory DSECRG-08-035 Application: Gallery Versions Affected: 1.5.7, 1.6-alpha3 Vendor URL: http://gallery.menalto.com/ Bug: Local File Include Exploits: YES Reported: 14.07.2008 Vendor response: 15.07.2008 Solution: YES...

[DSECRG-08-035] Local File Include Vulnerability in Gallery 1.5.7, 1.6-alpha3

Digital Security Research Group DSecRG Advisory DSECRG-08-035 Application: Gallery Versions Affected: 1.5.7, 1.6-alpha3 Vendor URL: http://gallery.menalto.com/ Bug: Local File Include Exploits: YES Reported: 14.07.2008 Vendor response: 15.07.2008 Solution: YES Date of Public Advisory: 08.08.2008...

DSECRG-08-035.txt

Digital Security Research Group DSecRG Advisory DSECRG-08-035 Application: Gallery Versions Affected: 1.5.7, 1.6-alpha3 Vendor URL: http://gallery.menalto.com/ Bug: Local File Include Exploits: YES Reported: 14.07.2008 Vendor response: 15.07.2008 Solution: YES Date of Public Advisory: 08.08.2008...

Debian DSA-1488-1 : phpbb2 - several vulnerabilities

Several remote vulnerabilities have been discovered in phpBB, a web-based bulletin board. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-0471 Private messaging allowed cross site request forgery, making it possible to delete all private messages of...

[SECURITY] [DSA 1488-1] New phpbb2 packages fix several vulnerabilities

------------------------------------------------------------------------ Debian Security Advisory DSA-1488-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst February 09, 2008 http://www.debian.org/security/faq -...

Debian Security Advisory DSA 925-1 (phpbb2)

The remote host is missing an update to phpbb2 announced via advisory DSA 925-1. Several vulnerabilities have been discovered in phpBB, a fully featured and skinnable flat webforum, The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2005-3310 Multiple...

Debian Security Advisory DSA 1066-1 (phpbb2)

The remote host is missing an update to phpbb2 announced via advisory DSA 1066-1. It was discovered that phpbb2, a web based bulletin board, does insufficiently sanitise values passed to the Font Colour 3 setting, which might lead to the execution of injected code by admin users. The old stable...

Debian Security Advisory DSA 768-1 (phpbb2)

The remote host is missing an update to phpbb2 announced via advisory DSA 768-1. A cross-site scripting vulnerability has been detected in phpBB2, a fully featured and skinneable flat webforum software, that allows remote attackers to inject arbitrary web script or HTML via nested tags. The old...

Debian: Security Advisory (DSA-768-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...