83 matches found
EUVD-2009-2143
Malware in sbrugna...
EUVD-2005-3583
Malware in sbrugna...
EUVD-2007-3133
Malware in sbrugna...
EUVD-2005-4221
Malware in sbrugna...
EUVD-2005-3673
Malware in sbrugna...
EUVD-2009-2077
Malware in sbrugna...
EUVD-2005-4213
Malware in sbrugna...
phpWebThings 0.4.4 Forum.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15276/info phpWebThings is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary...
phpWebThings <= 1.5.2 MD5 Hash Retrieve/File Disclosure Exploit
No description provided by source. !/usr/bin/perl phpWebThings = 1.5.2 MD5 Hash Retrieve / File Disclosure Remote Exploit by staker ------------------------------ mail: stakerathotmaildotit url: http://phpwebthings.nl ------------------------------ NOTE: 1. it works regardless of php.ini settings...
PHPWebThings <= 1.4 (forum) SQL Injection Exploit
No description provided by source. !/bin/bin/perl ----------------------------------------------------- - SQL injection in phpwebthing v 1.4.4 - Founder by Qptan & Exploting by AhLam - www.leZe.Com Only For Geek Hacker's - coded by AhLaM A.1.M|at|hotmail.com -...
PHPWebThings <= 1.4 (msg/forum) SQL Injection Exploit
No description provided by source. ?php ---phpwebth14xpl.php 10.47 16/11/2005 PHPWebThings 1.4 msg and forum SQL injection / Administrative credentials disclosure and remote commands execution coded by rgod site: http://rgod.altervista.org based on http://secunia.com/advisories/17410/, but here w...
PHPWebThings 1.4 Download.PHP File Parameter SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15399/info phpWebThings is prone to an SQL injection vulnerability. This is an input validation issue related to data that will be used in SQL queries, allowing a remote user to influence the structure and logic of a quer...
phpWebThings <= 1.5.2 (help.php module) Local File Inclusion Vuln
No description provided by source. ---------------------------------------------------------------------------------------------------- Name : phpwebthings = 1.5.2 Site : http://sourceforge.net/projects/phpwebthings/ Down :...
phpWebThings <= 1.5.2 (editor.php) Remote File Include Vulnerability
No description provided by source. +------------------------------------------------------------------------------------------- + phpWebThings 1.5.2 editor.php Remote File Include Vulnerability +------------------------------------------------------------------------------------------- + Affected...
phpWebThings <= 1.5.2 MD5 Hash recovery/file disclosure remote vulnerabilities-vulnerability warning-the black bar safety net
phpWebThings = 1.5.2 MD5 Hash recovery/file disclosure remote vulnerabilities Note: 1, regardless of the php. ini how to set this vulnerability are effective; 2, The wtconfig.php contains the mysql login Brief description: phpWebThings including one that allows an attacker to executeSQL...
CVE-2009-2147
SQL injection vulnerability in fdown.php in phpWebThings 1.5.2 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2009-2147
SQL injection vulnerability in fdown.php in phpWebThings 1.5.2 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...
Sql injection
SQL injection vulnerability in fdown.php in phpWebThings 1.5.2 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2009-2147
The CVE-2009-2147 entry describes a SQL injection in fdown.php of phpWebThings (versions 1.5.2 and earlier) that lets remote attackers execute arbitrary SQL commands via the id parameter. Multiple connected sources (NVD, CVE list, PRION, etc.) corroborate the vulnerability as a SQL-injection flaw...
Directory traversal
Directory traversal vulnerability in help.php in phpWebThings 1.5.2 and earlier, when magicquotesgpc is disabled, allows remote attackers to read arbitrary files via a .. dot dot in the module parameter...