EUVD-2008-6405

Malware in sbrugna...

Backend File Upload Vulnerability in phpSQLiteCMS

phpSQLiteCMS is an open source web content management system based on PHP and SQLite. A backend file upload vulnerability exists in phpSQLiteCMS, which can be exploited by attackers to gain control of a web server...

phpSQLiteCMS CSRF, Unrestricted File Type Upload, Privilege Escalation & XSS CSRF, Unrestricted File Type Upload, Privilege Escalation & XSS

Credits: John Page hyp3rlinx + Domains: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-PHPSQLITECMS0712.txt Vendor: ================================ phpsqlitecms.net Product: ================================ ilosuna-phpsqlitecms-d9b8219 Advisory Information:...

phpSQLiteCMS CSRF / XSS / Privilege Escalation / File Upload

Credits: John Page hyp3rlinx + Domains: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-PHPSQLITECMS0712.txt Vendor: ================================ phpsqlitecms.net Product: ================================ ilosuna-phpsqlitecms-d9b8219 Advisory Information:...

phpSQLiteCMS - Multiple Vulnerabilities

phpSQLiteCMS - Multiple Vulnerabilities Exploit Title: CSRF, Unrestricted File Upload, Privilege escalation & XSS Google Dork: intitle: CSRF, Unrestricted File Upload, Privilege escalation & XSS Date: 2015-07-12 Exploit Author: John Page hyp3rlinx Website: hyp3rlinx.altervista.org Vendor Homepage...

phpSQLiteCMS - Multiple Vulnerabilities

phpSQLiteCMS suffers from cross site request forgery, cross site scripting, arbitrary file upload, and privilege escalation vulnerabilities. + Credits: John Page hyp3rlinx + Domains: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-PHPSQLITECMS0712.txt Vendor:...

phpSQLiteCMS - Multiple Vulnerabilities

Exploit Title: CSRF, Unrestricted File Upload, Privilege escalation & XSS Google Dork: intitle: CSRF, Unrestricted File Upload, Privilege escalation & XSS Date: 2015-07-12 Exploit Author: John Page hyp3rlinx Website: hyp3rlinx.altervista.org Vendor Homepage: phpsqlitecms.net Software Link:...

phpSQLiteCMS 1 RC2 - cms/includes/login.inc.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/29338/info phpSQLiteCMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the...

phpSQLiteCMS 1 RC2 - cms/includes/header.inc.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/29338/info phpSQLiteCMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the...

CVE-2008-6435

Multiple cross-site scripting XSS vulnerabilities in phpSQLiteCMS 1 RC2 allow remote attackers to inject arbitrary web script or HTML via the 1 langhome, 2 langadminmenu, and 3 langadminmenupageoverview parameters to cms/includes/header.inc.php; and the 4 langloginusername and 5 langloginpassword...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in phpSQLiteCMS 1 RC2 allow remote attackers to inject arbitrary web script or HTML via the 1 langhome, 2 langadminmenu, and 3 langadminmenupageoverview parameters to cms/includes/header.inc.php; and the 4 langloginusername and 5 langloginpassword...

CVE-2008-6435

Multiple cross-site scripting XSS vulnerabilities in phpSQLiteCMS 1 RC2 allow remote attackers to inject arbitrary web script or HTML via the 1 langhome, 2 langadminmenu, and 3 langadminmenupageoverview parameters to cms/includes/header.inc.php; and the 4 langloginusername and 5 langloginpassword...

CVE-2008-6435

The CVE describes multiple cross-site scripting (XSS) vulnerabilities in phpSQLiteCMS 1 RC2. Affected: phpSQLiteCMS 1 RC2, specifically CMS files cms/includes/header.inc.php and cms/includes/login.inc.php. The root cause is unvalidated user input in language-related parameters: lang[home], lang[a...

phpSQLiteCMS 1 RC2 - cmsincludeslogin.inc.php Multiple Cross-Site Scripting Vulnerabilities

phpSQLiteCMS 1 RC2 - cmsincludeslogin.inc.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/29338/info phpSQLiteCMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may levera...

phpSQLiteCMS 1 RC2 - cmsincludesheader.inc.php Multiple Cross-Site Scripting Vulnerabilities

phpSQLiteCMS 1 RC2 - cmsincludesheader.inc.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/29338/info phpSQLiteCMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may...

phpSQLiteCMS Multiple Remote XSS Vulnerability

========================================================== phpSQLiteCMS Multiple Remote XSS Vulnerability ========================================================== AUTHOR : CWH Underground DATE : 21 May 2008 SITE : www.citec.us APPLICATION : phpSQLiteCMS VERSION : 1 RC2 Lastest Version VENDOR :...

phpSQLiteCMS 1 RC2 - '/cms/includes/header.inc.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/29338/info phpSQLiteCMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in t...

phpSQLiteCMS 1 RC2 - '/cms/includes/login.inc.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/29338/info phpSQLiteCMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in t...

phpsqlitecms-xss.txt

========================================================== phpSQLiteCMS Multiple Remote XSS Vulnerability ========================================================== AUTHOR : CWH Underground DATE : 21 May 2008 SITE : www.citec.us APPLICATION : phpSQLiteCMS VERSION : 1 RC2 Lastest Version VENDOR :...