19 matches found
EUVD-2008-6405
Malware in sbrugna...
Backend File Upload Vulnerability in phpSQLiteCMS
phpSQLiteCMS is an open source web content management system based on PHP and SQLite. A backend file upload vulnerability exists in phpSQLiteCMS, which can be exploited by attackers to gain control of a web server...
phpSQLiteCMS CSRF, Unrestricted File Type Upload, Privilege Escalation & XSS CSRF, Unrestricted File Type Upload, Privilege Escalation & XSS
Credits: John Page hyp3rlinx + Domains: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-PHPSQLITECMS0712.txt Vendor: ================================ phpsqlitecms.net Product: ================================ ilosuna-phpsqlitecms-d9b8219 Advisory Information:...
phpSQLiteCMS CSRF / XSS / Privilege Escalation / File Upload
Credits: John Page hyp3rlinx + Domains: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-PHPSQLITECMS0712.txt Vendor: ================================ phpsqlitecms.net Product: ================================ ilosuna-phpsqlitecms-d9b8219 Advisory Information:...
phpSQLiteCMS - Multiple Vulnerabilities
phpSQLiteCMS suffers from cross site request forgery, cross site scripting, arbitrary file upload, and privilege escalation vulnerabilities. + Credits: John Page hyp3rlinx + Domains: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-PHPSQLITECMS0712.txt Vendor:...
phpSQLiteCMS - Multiple Vulnerabilities
Exploit Title: CSRF, Unrestricted File Upload, Privilege escalation & XSS Google Dork: intitle: CSRF, Unrestricted File Upload, Privilege escalation & XSS Date: 2015-07-12 Exploit Author: John Page hyp3rlinx Website: hyp3rlinx.altervista.org Vendor Homepage: phpsqlitecms.net Software Link:...
phpSQLiteCMS - Multiple Vulnerabilities
phpSQLiteCMS - Multiple Vulnerabilities Exploit Title: CSRF, Unrestricted File Upload, Privilege escalation & XSS Google Dork: intitle: CSRF, Unrestricted File Upload, Privilege escalation & XSS Date: 2015-07-12 Exploit Author: John Page hyp3rlinx Website: hyp3rlinx.altervista.org Vendor Homepage...
phpSQLiteCMS 1 RC2 - cms/includes/login.inc.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/29338/info phpSQLiteCMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the...
phpSQLiteCMS 1 RC2 - cms/includes/header.inc.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/29338/info phpSQLiteCMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the...
CVE-2008-6435
Multiple cross-site scripting XSS vulnerabilities in phpSQLiteCMS 1 RC2 allow remote attackers to inject arbitrary web script or HTML via the 1 langhome, 2 langadminmenu, and 3 langadminmenupageoverview parameters to cms/includes/header.inc.php; and the 4 langloginusername and 5 langloginpassword...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in phpSQLiteCMS 1 RC2 allow remote attackers to inject arbitrary web script or HTML via the 1 langhome, 2 langadminmenu, and 3 langadminmenupageoverview parameters to cms/includes/header.inc.php; and the 4 langloginusername and 5 langloginpassword...
CVE-2008-6435
The CVE describes multiple cross-site scripting (XSS) vulnerabilities in phpSQLiteCMS 1 RC2. Affected: phpSQLiteCMS 1 RC2, specifically CMS files cms/includes/header.inc.php and cms/includes/login.inc.php. The root cause is unvalidated user input in language-related parameters: lang[home], lang[a...
CVE-2008-6435
Multiple cross-site scripting XSS vulnerabilities in phpSQLiteCMS 1 RC2 allow remote attackers to inject arbitrary web script or HTML via the 1 langhome, 2 langadminmenu, and 3 langadminmenupageoverview parameters to cms/includes/header.inc.php; and the 4 langloginusername and 5 langloginpassword...
phpSQLiteCMS 1 RC2 - cmsincludesheader.inc.php Multiple Cross-Site Scripting Vulnerabilities
phpSQLiteCMS 1 RC2 - cmsincludesheader.inc.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/29338/info phpSQLiteCMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may...
phpsqlitecms-xss.txt
========================================================== phpSQLiteCMS Multiple Remote XSS Vulnerability ========================================================== AUTHOR : CWH Underground DATE : 21 May 2008 SITE : www.citec.us APPLICATION : phpSQLiteCMS VERSION : 1 RC2 Lastest Version VENDOR :...
phpSQLiteCMS Multiple Remote XSS Vulnerability
========================================================== phpSQLiteCMS Multiple Remote XSS Vulnerability ========================================================== AUTHOR : CWH Underground DATE : 21 May 2008 SITE : www.citec.us APPLICATION : phpSQLiteCMS VERSION : 1 RC2 Lastest Version VENDOR :...
phpSQLiteCMS 1 RC2 - '/cms/includes/login.inc.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/29338/info phpSQLiteCMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in t...
phpSQLiteCMS 1 RC2 - cmsincludeslogin.inc.php Multiple Cross-Site Scripting Vulnerabilities
phpSQLiteCMS 1 RC2 - cmsincludeslogin.inc.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/29338/info phpSQLiteCMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may levera...
phpSQLiteCMS 1 RC2 - '/cms/includes/header.inc.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/29338/info phpSQLiteCMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in t...