36 matches found
EUVD-2005-2736
Malware in sbrugna...
EUVD-2006-6949
Malware in sbrugna...
phpGraphy 0.9.13b Multiple Vulnerabilities
No description provided by source. ===================================== Vulnerability ID: HTB22959 Reference: http://www.htbridge.ch/advisory/csrfcrosssiterequestforgeryinphpgraphy.html Product: phpGraphy Vendor: http://phpgraphy.sourceforge.net/ http://phpgraphy.sourceforge.net/ Vulnerable...
HTB22958: XSS in phpGraphy
Vulnerability ID: HTB22958 Reference: http://www.htbridge.ch/advisory/xssinphpgraphy.html Product: phpGraphy Vendor: http://phpgraphy.sourceforge.net/ http://phpgraphy.sourceforge.net/ Vulnerable Version: 0.9.13b Vendor Notification: 14 April 2011 Vulnerability Type: XSS Cross Site Scripting Risk...
HTB22959: CSRF (Cross-Site Request Forgery) in phpGraphy
Vulnerability ID: HTB22959 Reference: http://www.htbridge.ch/advisory/csrfcrosssiterequestforgeryinphpgraphy.html Product: phpGraphy Vendor: http://phpgraphy.sourceforge.net/ http://phpgraphy.sourceforge.net/ Vulnerable Version: 0.9.13b Vendor Notification: 14 April 2011 Vulnerability Type: CSRF...
phpGraphy <= 0.9.13b XSS Vulnerability - Active Check
phpGraphy is prone to a cross-site scripting XSS vulnerability because it fails to sufficiently sanitize user-supplied data. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
phpGraphy 'theme_dir' Parameter Cross Site Scripting Vulnerability
phpGraphy is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to...
phpGraphy 0.9.13b Multiple Vulnerabilities
Exploit for php platform in category web applications Product: phpGraphy Vendor: http://phpgraphy.sourceforge.net/ http://phpgraphy.sourceforge.net/ Vulnerable Version: 0.9.13b Vendor Notification: 14 April 2011 Vulnerability Type: CSRF Cross-Site Request Forgery Risk level: Low Credit: High-Tech...
phpGraphy 0.9.13b - Multiple Vulnerabilities
===================================== Vulnerability ID: HTB22959 Reference: http://www.htbridge.ch/advisory/csrfcrosssiterequestforgeryinphpgraphy.html Product: phpGraphy Vendor: http://phpgraphy.sourceforge.net/ http://phpgraphy.sourceforge.net/ Vulnerable Version: 0.9.13b Vendor Notification: 1...
phpGraphy 0.9.13b Cross Site Request Forgery / Cross Site Scripting
===================================== Vulnerability ID: HTB22959 Reference: http://www.htbridge.ch/advisory/csrfcrosssiterequestforgeryinphpgraphy.html Product: phpGraphy Vendor: http://phpgraphy.sourceforge.net/ http://phpgraphy.sourceforge.net/ Vulnerable Version: 0.9.13b Vendor Notification: 1...
phpGraphy 0.9.13b - Multiple Vulnerabilities
phpGraphy 0.9.13b - Multiple Vulnerabilities ===================================== Vulnerability ID: HTB22959 Reference: http://www.htbridge.ch/advisory/csrfcrosssiterequestforgeryinphpgraphy.html Product: phpGraphy Vendor: http://phpgraphy.sourceforge.net/ http://phpgraphy.sourceforge.net/...
phpGraphy 0.9.13b - 'theme_dir' Cross-Site Scripting
source: https://www.securityfocus.com/bid/47634/info phpGraphy is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context ...
phpGraphy 0.9.13b - theme_dir Cross-Site Scripting
phpGraphy 0.9.13b - themedir Cross-Site Scripting source: https://www.securityfocus.com/bid/47634/info phpGraphy is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in t...
Multiple Vulnerabilities in phpGraphy
High-Tech Bridge SA Security Research Lab has discovered vulnerabilities in phpGraphy which could be exploited to perform cross-site scripting and cross-site request forgery attacks. 1 Cross-site scripting XSS vulnerability in phpGraphy The vulnerability exists due to input sanitation error in th...
phpGraphys 0.9.13 and below Remote File Inclusion Vulnerability
No description provided by source. | Security Sn!pEr.S!Te // 2o1o | ------------------------------------------------------------ Remote File Inclusion Vulnerability ----------------------------------------------------------- phpGraphy ==0.9.13 mysqlcleanup.php...
phpGraphy 0.9.13 Remote File Inclusion
|| || | || o,7 || . o7 || 4||| ow, : / / . +----------------------------------------------------------------------- -+ | ....... | | ..''xxxxxxxxxxxxxxx'... | | ..'xxxxxxxxxxxxxxxxxxxxxxxxxxx.. | | ..'xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx'. | | .'xxxxxxxxxxxxxxxxxxxxxxxxxxxx'''.......'. | |...
phpGraphy <= 0.9.13 (mysql_cleanup.php) File Inclusion Vulnerability
Exploit for php platform in category web applications ==================================================================== phpGraphy = 0.9.13 mysqlcleanup.php File Inclusion Vulnerability ====================================================================...
CVE-2006-6966
phpGraphy before 0.9.13a does not properly unset variables when the input data includes a numeric parameter with a value matching an alphanumeric parameter's hash value, which allows remote attackers to execute arbitrary PHP code by uploading a config.php file via the pictures parameter to...
CVE-2006-6966
CVE-2006-6966 affects phpGraphy before 0.9.13a. The flaw arises when input data includes a numeric parameter whose value matches a hash value of an alphanumeric parameter, allowing a remote attacker to execute arbitrary PHP code by uploading a config.php via the pictures[] parameter to index.php....
CVE-2006-6966
phpGraphy before 0.9.13a does not properly unset variables when the input data includes a numeric parameter with a value matching an alphanumeric parameter's hash value, which allows remote attackers to execute arbitrary PHP code by uploading a config.php file via the pictures parameter to...