21 matches found
EUVD-2007-2016
Malware in sbrugna...
EUVD-2006-2833
Malware in sbrugna...
EUVD-2007-1899
Malware in sbrugna...
EUVD-2005-3983
Malware in sbrugna...
CVE-2007-2021
Multiple PHP remote file inclusion vulnerabilities in Pineapple Technologies Lore 1 allow remote attackers to execute arbitrary PHP code via a URL in the 1 langpath parameter to thirdparty/phpmailer/class.phpmailer.php or the 2 getpluginfilepath parameter to...
Remote file inclusion
Multiple PHP remote file inclusion vulnerabilities in Pineapple Technologies Lore 1 allow remote attackers to execute arbitrary PHP code via a URL in the 1 langpath parameter to thirdparty/phpmailer/class.phpmailer.php or the 2 getpluginfilepath parameter to...
CVE-2007-2021
Multiple PHP remote file inclusion vulnerabilities in Pineapple Technologies Lore 1 allow remote attackers to execute arbitrary PHP code via a URL in the 1 langpath parameter to thirdparty/phpmailer/class.phpmailer.php or the 2 getpluginfilepath parameter to...
CVE-2007-2021
CVE-2007-2021: Multiple PHP remote file inclusion flaws in Pineapple Technologies Lore 1 permit remote code execution via crafted URLs in the lang_path parameter of third_party/phpmailer/class.phpmailer.php or the get_plugin_file_path parameter of third_party/smarty/libs/plugins/function.html_che...
Cross site scripting
Cross-site scripting XSS vulnerability in auth.php in Pineapple Technologies QuizShock 1.6.1 and earlier allows remote attackers to inject arbitrary web script or HTML via encoded special characters in the forwardto parameter, as demonstrated using """...
CVE-2007-1905
CVE-2007-1905 is a cross-site scripting (XSS) vulnerability in Pineapple Technologies QuizShock 1.6.1 and earlier, occurring in auth.php. The issue allows remote attackers to inject arbitrary scripts/HTML by supplying encoded characters in the forward_to parameter (example: "<"
CVE-2007-1905
Cross-site scripting XSS vulnerability in auth.php in Pineapple Technologies QuizShock 1.6.1 and earlier allows remote attackers to inject arbitrary web script or HTML via encoded special characters in the forwardto parameter, as demonstrated using """...
lore-rfi.txt
By Hasadya Raed Contact : [email protected] Greetz : Brotha Mohammed Zeed --------------------------- Script : Lore v1 Download : http://www.pineappletechnologies.com Dork : Pineapple Technologies 2003-2005 c --------------------------- B.Files : class.phpmailer.php function.htmlcheckboxes.php...
Remot File Include In Script Lore v1
By Hasadya Raed Contact : [email protected] Greetz : Brotha Mohammed Zeed --------------------------- Script : Lore v1 Download : http://www.pineappletechnologies.com Dork : Pineapple Technologies 2003-2005 c --------------------------- B.Files : class.phpmailer.php function.htmlcheckboxes.php...
Sql injection
SQL injection vulnerability in comment.php in Pineapple Technologies Lore 1.5.6 and earlier allows remote attackers to execute arbitrary SQL commands via the articleid parameter...
CVE-2006-2836
SQL injection vulnerability in comment.php in Pineapple Technologies Lore 1.5.6 and earlier allows remote attackers to execute arbitrary SQL commands via the articleid parameter...
CVE-2006-2836
CVE-2006-2836 describes a SQL injection vulnerability in Pineapple Technologies Lore, affecting version 1.5.6 and earlier. The flaw resides in comment.php and allows remote attackers to execute arbitrary SQL commands via the article_id parameter. The confirmed impact is partial confidentiality, i...
CVE-2006-2836
SQL injection vulnerability in comment.php in Pineapple Technologies Lore 1.5.6 and earlier allows remote attackers to execute arbitrary SQL commands via the articleid parameter...
CVE-2005-3988
SQL injection vulnerability in article.php in Pineapple Technologies Lore 1.5.4 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2005-3988
SQL injection vulnerability in article.php in Pineapple Technologies Lore 1.5.4 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2005-3988
CVE-2005-3988 affects Pineapple Technologies Lore 1.5.4; the vulnerability is an SQL injection in article.php via the id parameter. This allows remote command execution against the database. The provided sources (e.g., NVD) confirm the vulnerability and its high impact (CVSS v2 base score 7.5, wi...