14 matches found
EUVD-2009-2587
Malware in sbrugna...
EUVD-2006-6245
Malware in sbrugna...
Redirection vulnerability in MBoard
Vulnerability ID: HTB23029 Reference: http://www.htbridge.ch/advisory/redirectionvulnerabilityinmboard.html Product: MBoard Vendor: PHPJunkyar http://www.phpjunkyard.com Vulnerable Version: 1.3 and probably prior Tested on: 1.3 Vendor Notification: 06 July 2011 Vulnerability Type: Redirection...
Multiple XSS in GBook PHP guestbook
Vulnerability ID: HTB23028 Reference: http://www.htbridge.ch/advisory/multiplexssingbookphpguestbook.html Product: GBook PHP guestbook Vendor: PHPJunkyar http://www.phpjunkyard.com Vulnerable Version: 1.7 and probably prior Tested on: 1.7 Vendor Notification: 06 July 2011 Vulnerability Type: XSS...
PHPJunkyard 1.3 Open Redirect
Vulnerability ID: HTB23029 Reference: http://www.htbridge.ch/advisory/redirectionvulnerabilityinmboard.html Product: MBoard Vendor: PHPJunkyar http://www.phpjunkyard.com Vulnerable Version: 1.3 and probably prior Tested on: 1.3 Vendor Notification: 06 July 2011 Vulnerability Type: Redirection...
PHPJunkYard GBook 1.61.7 - Multiple Cross-Site Scripting Vulnerabilities
PHPJunkYard GBook 1.61.7 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/48905/info PHPJunkYard GBook is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these...
PHPJunkYard GBook 1.6/1.7 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/48905/info PHPJunkYard GBook is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting...
Sql injection
SQL injection vulnerability in guestbook.php in PHPJunkYard GBook 1.6 allows remote attackers to execute arbitrary SQL commands via the mesid parameter...
CVE-2009-2592
SQL injection vulnerability in guestbook.php in PHPJunkYard GBook 1.6 allows remote attackers to execute arbitrary SQL commands via the mesid parameter...
CVE-2009-2592
The CVE-2009-2592 entry affects PHPJunkYard GBook 1.6, where a flaw in guestbook.php enables SQL injection via the mes_id parameter. This allows remote attackers to potentially run arbitrary SQL commands against the application's database. The vulnerability is described in publicly available sour...
CVE-2009-2592
SQL injection vulnerability in guestbook.php in PHPJunkYard GBook 1.6 allows remote attackers to execute arbitrary SQL commands via the mesid parameter...
CVE-2006-6262
Directory traversal vulnerability in mboard.php in PHPJunkYard aka Klemen Stirn MBoard 1.22 and earlier allows remote attackers to create arbitrary empty files via a .. dot dot in the origid parameter...
CVE-2006-6262
Directory traversal vulnerability in mboard.php in PHPJunkYard aka Klemen Stirn MBoard 1.22 and earlier allows remote attackers to create arbitrary empty files via a .. dot dot in the origid parameter...
CVE-2006-6262
CVE-2006-6262 describes a directory traversal in PHPJunkYard’s MBoard 1.22 and earlier, where an attacker can exploit the orig_id parameter to create arbitrary empty files. Affected product: PHPJunkYard MBoard (Klemen Stirn) up to version 1.22. The vulnerability is rooted in the orig_id handling,...