EUVD-2008-6181

Malware in sbrugna...

MCnews 1.3 SQL Injection

:: MCnews 1.3 :: Download: http://www.phpforums.net/mcNews1.3.zip link off :: Vendor: www.phpforums.net :: Author: s4r4d0 :: mail: [email protected] :: Bug: Sql Injection found on lire.php file :: Exploit: http://host/mcNews/lire.php?n=-1+UNION+SELECT+1,2,@@version,4,5,6,7,8,9,10,11,12,13,14-- ::...

CVE-2008-6211

Multiple cross-site scripting XSS vulnerabilities in PhpForums.net mcGallery 1.1 allow remote attackers to inject arbitrary web script or HTML via the lang parameter to 1 admin.php, 2 index.php, 3 sess.php, 4 stats.php, 5 detail.php, 6 resize.php, and 7 show.php. NOTE: the provenance of this...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in PhpForums.net mcGallery 1.1 allow remote attackers to inject arbitrary web script or HTML via the lang parameter to 1 admin.php, 2 index.php, 3 sess.php, 4 stats.php, 5 detail.php, 6 resize.php, and 7 show.php. NOTE: the provenance of this...

CVE-2008-6211

The CVE-2008-6211 issue affects PhpForums.net mcGallery 1.1 and involves multiple XSS vulnerabilities. Arbitrary web script or HTML could be injected through the lang parameter to seven pages (admin.php, index.php, sess.php, stats.php, detail.php, resize.php, show.php). The root cause is reflecte...

CVE-2008-6211

Multiple cross-site scripting XSS vulnerabilities in PhpForums.net mcGallery 1.1 allow remote attackers to inject arbitrary web script or HTML via the lang parameter to 1 admin.php, 2 index.php, 3 sess.php, 4 stats.php, 5 detail.php, 6 resize.php, and 7 show.php. NOTE: the provenance of this...