48 matches found
EUVD-2013-5152
Malware in sbrugna...
EUVD-2007-3594
Malware in sbrugna...
EUVD-2008-4140
Malware in sbrugna...
EUVD-2013-5151
Malware in sbrugna...
EUVD-2015-2656
Malware in sbrugna...
CVE-2013-5311
Multiple SQL injection vulnerabilities in Vastal I-Tech phpVID 1.2.3 allow remote attackers to execute arbitrary SQL commands via the "n" parameter to 1 browsevideos.php or 2 members.php. NOTE: the cat parameter is already covered by CVE-2008-4157...
CVE-2015-2563
SQL injection vulnerability in groups.php in Vastal I-Tech phpVID 0.9.9 and 1.2.3 allows remote attackers to execute arbitrary SQL commands via the orderby parameter. NOTE: The cat parameter vector is already covered by CVE-2008-4157...
CVE-2013-5312
Multiple cross-site scripting XSS vulnerabilities in Vastal I-Tech phpVID 1.2.3 allow remote attackers to inject arbitrary web script or HTML via the 1 n parameter to browsevideos.php or the 2 cat parameter to groups.php...
phpvid.com XSS vulnerability
Open Bug Bounty ID: OBB-385184 Description| Value ---|--- Affected Website:| phpvid.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Sheet...
Vastal I-Tech phpVID SQL Injection Vulnerability
Vastal I-Tech phpVID is a set of video sharing software by Vastal I-Tech India. The software supports browsing videos, commenting on videos, uploading videos and more. A SQL injection vulnerability exists in the groups.php script in Vastal I-Tech phpVID version 0.9.9 and version 1.2.3. A remote...
CVE-2015-2563
SQL injection vulnerability in groups.php in Vastal I-Tech phpVID 0.9.9 and 1.2.3 allows remote attackers to execute arbitrary SQL commands via the orderby parameter. NOTE: The cat parameter vector is already covered by CVE-2008-4157...
Sql injection
SQL injection vulnerability in groups.php in Vastal I-Tech phpVID 0.9.9 and 1.2.3 allows remote attackers to execute arbitrary SQL commands via the orderby parameter. NOTE: The cat parameter vector is already covered by CVE-2008-4157...
CVE-2015-2563
CVE-2015-2563 describes an SQL injection in the Vastal I-Tech phpVID web app (versions 0.9.9 and 1.2.3) specifically in the groups.php script. The vulnerability is triggered via the order_by parameter, allowing remote attackers to execute arbitrary SQL commands. The note indicates the cat paramet...
CVE-2015-2563
SQL injection vulnerability in groups.php in Vastal I-Tech phpVID 0.9.9 and 1.2.3 allows remote attackers to execute arbitrary SQL commands via the orderby parameter. NOTE: The cat parameter vector is already covered by CVE-2008-4157...
Vastal I-tech phpVID 1.2.3 SQL Injection
Vastal I-tech phpVID 1.2.3 SQL Injection Security Vulnerabilities Exploit Title: Vastal I-tech phpVID /groups.php Multiple Parameters SQL Injection Security Vulnerabilities Product: phpVID Vendor: Vastal I-tech Vulnerable Versions: 1.2.3 0.9.9 Tested Version: 1.2.3 0.9.9 Advisory Publication: Mar...
Vastal I-tech phpVID 1.2.3 Cross Site Scripting
Vastal I-tech phpVID 1.2.3 Multiple XSS Cross-site Scripting Security Vulnerabilities Exploit Title: Vastal I-tech phpVID Multiple XSS Security Vulnerabilities Product: phpVID Vendor: Vastal I-tech Vulnerable Versions: 1.2.3 0.9.9 Tested Version: 1.2.3 0.9.9 Advisory Publication: March 10, 2015...
phpVID 1.2.3 - Multiple Vulnerabilities
No description provided by source. | \ | | | | / | | | | | | | | | | // \ \ / / | | | | | | |/ | ' \ \ \ / / | | | \ \ /\ V / | | || | || | | | | | | / || \| / /||,|||/|| || |/ || PhpVID Script, Multiple Vulnerabilities Product Page:...
phpvid 1.1 (xss/sql) Multiple Vulnerabilities
No description provided by source. . . | / | | \ \ | / / |\ \ \ |/ // / /\ \ / |/ \ / // | / | | / \ \ / / // \ / \ |/| || \\ /|\ / / / / \ / \ / / / \ | | /\ /\ / \ | \ // est.2007 / / forum.darkc0de.com --d3hydr8 -rsauron-baltazar -sinner01 -C1c4Tr1Z - beenu...
CVE-2013-5312
Multiple cross-site scripting XSS vulnerabilities in Vastal I-Tech phpVID 1.2.3 allow remote attackers to inject arbitrary web script or HTML via the 1 n parameter to browsevideos.php or the 2 cat parameter to groups.php...
CVE-2013-5311
Multiple SQL injection vulnerabilities in Vastal I-Tech phpVID 1.2.3 allow remote attackers to execute arbitrary SQL commands via the "n" parameter to 1 browsevideos.php or 2 members.php. NOTE: the cat parameter is already covered by CVE-2008-4157...