166 matches found
PHPGedView 2.52.6 - calendar.php Cross-Site Scripting
PHPGedView 2.52.6 - calendar.php Cross-Site Scripting source: https://www.securityfocus.com/bid/11907/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue...
PHPGedView 2.5/2.6 - 'Imageview.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/11890/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue could permit a remote attacker to create a malicious...
PHPGedView 2.5/2.6 - 'index.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/11880/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue could permit a remote attacker to create a malicious...
PHPGedView 2.5/2.6 - 'Gdbi_interface.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/11894/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue could permit a remote attacker to create a malicious...
PHPGedView 2.52.6 - login.php Newlanguage Cross-Site Scripting
PHPGedView 2.52.6 - login.php Newlanguage Cross-Site Scripting source: https://www.securityfocus.com/bid/11905/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input...
PHPGedView 2.52.6 - login.php?Username Cross-Site Scripting
PHPGedView 2.52.6 - login.php?Username Cross-Site Scripting source: https://www.securityfocus.com/bid/11904/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This...
PHPGedView 2.52.6 - Source.php Cross-Site Scripting
PHPGedView 2.52.6 - Source.php Cross-Site Scripting source: https://www.securityfocus.com/bid/11888/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue...
PHPGedView 2.5/2.6 - 'Relationship.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/11906/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue could permit a remote attacker to create a malicious...
PHPGedView 2.52.6 - Imageview.php Cross-Site Scripting
PHPGedView 2.52.6 - Imageview.php Cross-Site Scripting source: https://www.securityfocus.com/bid/11890/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issu...
PHPGedView 2.52.6 - login.php?URL Cross-Site Scripting
PHPGedView 2.52.6 - login.php?URL Cross-Site Scripting source: https://www.securityfocus.com/bid/11903/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issu...
PHPGedView 2.5/2.6 - 'login.php' Newlanguage Cross-Site Scripting
source: https://www.securityfocus.com/bid/11905/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue could permit a remote attacker to create a malicious...
PHPGedView 2.5/2.6 - 'Individual.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/11882/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue could permit a remote attacker to create a malicious...
PHPGedView 2.52.6 - Individual.php Cross-Site Scripting
PHPGedView 2.52.6 - Individual.php Cross-Site Scripting source: https://www.securityfocus.com/bid/11882/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This iss...
PHPGedView 2.52.6 - index.php Cross-Site Scripting
PHPGedView 2.52.6 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/11880/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue...
PHPGedView 2.5/2.6 - 'Timeline.php' SQL Injection
source: https://www.securityfocus.com/bid/11925/info It is reported that PhpGedView is susceptible to a remote SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input prior to including it in an SQL query. This issue allows remote...
Vuln in PHPGEDVIEW 2.61 Multi-Problem
Tittle : Vuln in PHPGEDVIEW 2.61 Lang : PHP Author : Windak Website: www.security.com.vn Version : PHPGEDVIEW 2.61 Multi-Problem Introduction : PHPGEDVIEW is program read projects GEDCOM file default html . Bug : 1 Php code injection : Rick : Hight - Vuln in any files : functions.php,...
CVE-2004-0030
PHP remote file inclusion vulnerability in 1 functions.php, 2 authenticationindex.php, and 3 configgedcom.php for PHPGEDVIEW 2.61 allows remote attackers to execute arbitrary PHP code by modifying the PGVBASEDIRECTORY parameter to reference a URL on a remote web server that contains the code...
CVE-2004-0030
CVE-2004-0030 describes a PHP remote file inclusion in PHPGEDVIEW 2.61 via PGV_BASE_DIRECTORY in functions.php, authentication_index.php, and config_gedcom.php, enabling remote code execution by referencing a URL on a remote server. Root cause: unsafely using a user-controllable base directory pa...
PT-2004-1245 · Php · Phpgedview
Name of the Vulnerable Software and Affected Versions: PHPGEDVIEW version 2.61 Description: The issue allows remote attackers to execute arbitrary PHP code by modifying the PGV BASE DIRECTORY parameter to reference a URL on a remote web server that contains the code. This is possible due to a...
phpgedview.txt
Tittle : Vuln in PHPGEDVIEW 2.61 Lang : PHP Author : Windak Website: www.security.com.vn Version : PHPGEDVIEW 2.61 Multi-Problem Introduction : PHPGEDVIEW is program read projects GEDCOM file default html . Bug : 1 Php code injection : Rick : Hight - Vuln in any files : functions.php,...