47 matches found
EUVD-2008-0365
Malware in sbrugna...
EUVD-2007-3325
Malware in sbrugna...
EUVD-2009-2397
Malware in sbrugna...
EUVD-2007-1982
Malware in sbrugna...
EUVD-2008-6993
Malware in sbrugna...
EUVD-2007-2858
Malware in sbrugna...
EUVD-2009-2398
Malware in sbrugna...
CVE-2008-7034
PHP remote file inclusion vulnerability in kernel/smarty/Smarty.class.php in PHPEcho CMS 2.0 rc3 allows remote attackers to execute arbitrary PHP code via a URL in unspecified vectors that modify the smartycompilepath variable in the fetch function...
Remote file inclusion
PHP remote file inclusion vulnerability in kernel/smarty/Smarty.class.php in PHPEcho CMS 2.0 rc3 allows remote attackers to execute arbitrary PHP code via a URL in unspecified vectors that modify the smartycompilepath variable in the fetch function...
CVE-2008-7034
PHP remote file inclusion vulnerability in kernel/smarty/Smarty.class.php in PHPEcho CMS 2.0 rc3 allows remote attackers to execute arbitrary PHP code via a URL in unspecified vectors that modify the smartycompilepath variable in the fetch function...
CVE-2008-7034
CVE-2008-7034 affects PHPEcho CMS 2.0 rc3 due to a PHP remote file inclusion in kernel/smarty/Smarty.class.php. The vulnerability allows an attacker to execute arbitrary PHP code by supplying a URL that influences the _smarty_compile_path in the fetch function. Exploitation details are not provid...
Sql injection
SQL injection vulnerability in index.php in the forum module in PHPEcho CMS 2.0-rc3 allows remote attackers to execute arbitrary SQL commands via the id parameter in a thread action, a different vector than CVE-2008-0355...
CVE-2009-2401
Cross-site scripting XSS vulnerability in PHPEcho CMS 2.0-rc3 allows remote attackers to inject arbitrary web script or HTML via a forum post...
Cross site scripting
Cross-site scripting XSS vulnerability in PHPEcho CMS 2.0-rc3 allows remote attackers to inject arbitrary web script or HTML via a forum post...
CVE-2009-2402
SQL injection vulnerability in index.php in the forum module in PHPEcho CMS 2.0-rc3 allows remote attackers to execute arbitrary SQL commands via the id parameter in a thread action, a different vector than CVE-2008-0355...
CVE-2009-2401
PHPEcho CMS 2.0-rc3 is affected by a Cross-site scripting (XSS) vulnerability that allows an attacker to inject arbitrary script or HTML through a forum post. The CVSS base score is 4.3 (Medium) with no authentication required, though the impact is limited to partial integrity and no confidential...
CVE-2009-2402
CVE-2009-2402 affects PHPEcho CMS 2.0-rc3 in the forum module. The vulnerability is a SQL injection in index.php, exploitable via the id parameter in a thread action, allowing remote execution of arbitrary SQL commands. The description indicates a different vector from CVE-2008-0355, and CVE refe...
CVE-2009-2402
SQL injection vulnerability in index.php in the forum module in PHPEcho CMS 2.0-rc3 allows remote attackers to execute arbitrary SQL commands via the id parameter in a thread action, a different vector than CVE-2008-0355...
PHPEcho CMS 2.0-rc3 (forum) XSS Cookie Stealing / Blind Vulnerability
No description provided by source. PHPEcho CMS 2.0-rc3 forum XSS Cookie Stealing / Blind Vulnerability bug found by Jose Luis Gongora Fernandez a.k.a JosS contact: sys-projectathotmail.com website: http://www.hack0wn.com/ - download: http://sourceforge.net/project/showfiles.php?groupid=186100 XSS...
PHPEcho CMS 2.0-rc3 - forum Cross-Site Scripting Cookie Stealing Blind SQL Injection
PHPEcho CMS 2.0-rc3 - forum Cross-Site Scripting Cookie Stealing Blind SQL Injection PHPEcho CMS 2.0-rc3 forum XSS Cookie Stealing / Blind Vulnerability bug found by Jose Luis Gongora Fernandez a.k.a JosS contact: sys-projectathotmail.com website: http://www.hack0wn.com/ - download:...