12 matches found
EUVD-2005-4241
Malware in sbrugna...
EUVD-2006-2158
Malware in sbrugna...
EUVD-2005-4242
Malware in sbrugna...
Sql injection
SQL injection vulnerability in gallery.php in Plogger Beta 2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter, when the level is set to "slideshow". NOTE: This is a different vulnerability than CVE-2005-4246...
CVE-2006-2157
CVE-2006-2157 targets Plogger Beta 2.1 and earlier, with a SQL injection in gallery.php via the id parameter when level is set to "slideshow". The vulnerability allows remote attackers to execute arbitrary SQL commands, as described in the NVD entry and related records. Affected component: Plogge...
CVE-2005-4573
PHP remote file include vulnerability in plog-admin-functions.php in Plogger Beta 2 allows remote attackers to execute arbitrary code via a URL in the configbasedir parameter...
CVE-2005-4573
Plogger (Beta 2) is affected by CVE-2005-4573 via plog-admin-functions.php where unsanitized input in config[basedir] is used in a PHP require_once, enabling remote file inclusion and potential arbitrary code execution if register_globals is enabled. Affected component: admin/plog-admin-functions...
CVE-2005-4573
PHP remote file include vulnerability in plog-admin-functions.php in Plogger Beta 2 allows remote attackers to execute arbitrary code via a URL in the configbasedir parameter...
CVE-2005-4247
Cross-site scripting XSS vulnerability in index.php in Plogger Beta 2 and earlier allows remote attackers to inject arbitrary web script or HTML via the searchterms parameter...
CVE-2005-4247
The CVE-2005-4247 entry concerns Plogger Beta 2 and earlier, with a Cross-site scripting (XSS) vulnerability in index.php exploitable via the searchterms parameter. The vulnerability can cause an attacker to inject arbitrary web script or HTML, with the impact limited to partial integrity comprom...
CVE-2005-4246
Plogger Beta 2 and earlier are affected by a SQL injection vulnerability. The issue allows remote attackers to inject arbitrary SQL commands via the (1) id parameter to index.php and (2) the page parameter, indicating input unsanitization in the application’s query construction. The observed impa...
Plogger Beta 2 - index.php Multiple Cross-Site Scripting Vulnerabilities
Plogger Beta 2 - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/15839/info Plogger is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful...