24 matches found
EUVD-2006-3146
Malware in sbrugna...
EUVD-2006-1714
Malware in sbrugna...
EUVD-2007-4091
Malware in sbrugna...
EUVD-2006-1713
Malware in sbrugna...
phpMyForum 4.0 index.php page Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/17420/info phpMyForum is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...
phpMyForum 4.0 index.php type Variable CRLF Injection
No description provided by source. source: http://www.securityfocus.com/bid/17420/info phpMyForum is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...
Sql injection
SQL injection vulnerability in editpost.php in phpMyForum before 4.1.4 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. NOTE: some of these details are obtained from third party information...
CVE-2007-4107
SQL injection vulnerability in editpost.php in phpMyForum before 4.1.4 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. NOTE: some of these details are obtained from third party information...
CVE-2007-4107
SQL injection vulnerability in editpost.php in phpMyForum before 4.1.4 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. NOTE: some of these details are obtained from third party information...
CVE-2007-4107
CVE-2007-4107 describes an SQL injection in editpost.php of phpMyForum prior to 4.1.4, allowing remote attackers to execute arbitrary SQL commands via unspecified vectors. Affected software: phpMyForum (before 4.1.4). The underlying cause is an injection vulnerability in the editpost path. Report...
CVE-2006-3149
Cross-site scripting XSS vulnerability in topic.php in phpMyForum 4.1.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the highlight parameter...
CVE-2006-3149
Cross-site scripting XSS vulnerability in topic.php in phpMyForum 4.1.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the highlight parameter...
CVE-2006-3149
The CVE-2006-3149 entry describes a Cross-site scripting (XSS) vulnerability in phpMyForum, affecting topic.php in version 4.1.3 and earlier. The vulnerability allows remote attackers to inject arbitrary web script or HTML via the highlight parameter. The connected documents confirm the affected ...
Crlf injection
CRLF injection vulnerability in index.php in Christoph Roeder phpMyForum 4.0 allows remote attackers to inject HTTP headers via hex-encoded CRLF sequences in the type parameter...
CVE-2006-1714
CRLF injection vulnerability in index.php in Christoph Roeder phpMyForum 4.0 allows remote attackers to inject HTTP headers via hex-encoded CRLF sequences in the type parameter...
CVE-2006-1714
CRLF injection vulnerability in index.php in Christoph Roeder phpMyForum 4.0 allows remote attackers to inject HTTP headers via hex-encoded CRLF sequences in the type parameter...
CVE-2006-1713
CVE-2006-1713: Cross-site scripting (XSS) in phpMyForum 4.0 (index.php) allows remote attackers to inject arbitrary script/HTML via the page parameter. Affected software: phpMyForum 4.0. Root cause: input in the page parameter is not properly sanitized before output. Impact is web-script injectio...
CVE-2006-1713
Cross-site scripting XSS vulnerability in index.php in Christoph Roeder phpMyForum 4.0 allows remote attackers to inject arbitrary web script or HTML via the page parameter...
CVE-2006-1714
CVE-2006-1714 is a CRLF injection vulnerability in the phpMyForum 4.0 index.php file. The issue allows remote attackers to inject HTTP headers by sending hex-encoded CRLF sequences through the type parameter, enabling header manipulation. The affected component is the index.php handler of Christo...
phpMyForum Cross Site Scripting & CRLF injection
Title : phpMyForum Cross Site Scripting & CRLF injection Author: Mourad aka Psych0 Moroccan Security Team Vendor: www.phpmyforum.de Version: 4.0 Examples: http://target/path/index.php?page=xsscode&type=text2Fcss http://target/path/index.php?template=css&type=someurl0d0aSet-Cookie3Aheader...