20 matches found
EUVD-2005-0514
Malware in sbrugna...
EUVD-2008-0344
Malware in sbrugna...
EUVD-2003-1076
Malware in sbrugna...
CVE-2008-0334
Cross-site scripting XSS vulnerability in pm/language/spanish/preferences.php in PMachine Pro 2.4.1 allows remote attackers to inject arbitrary web script or HTML via the LPREFNAME855 parameter...
pMachine Pro 2.4.1 Multiple Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/27282/info pMachine Pro is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the...
PMachine Pro 2.4 - Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12597/info PMachine Pro is reported prone to a remote file include vulnerability. This issue affects the 'mailautocheck.php' script. An attacker may leverage this issue to execute arbitrary server-side script code on an...
Cross site scripting
Cross-site scripting XSS vulnerability in pm/language/spanish/preferences.php in PMachine Pro 2.4.1 allows remote attackers to inject arbitrary web script or HTML via the LPREFNAME855 parameter...
CVE-2008-0334
Cross-site scripting XSS vulnerability in pm/language/spanish/preferences.php in PMachine Pro 2.4.1 allows remote attackers to inject arbitrary web script or HTML via the LPREFNAME855 parameter...
CVE-2008-0334
CVE-2008-0334 affects PMachine Pro 2.4.1. The vulnerability is an XSS in the Spanish language preferences page (pm/language/spanish/preferences.php) exploitable via the L_PREF_NAME[855] parameter, allowing remote attackers to inject arbitrary web script or HTML. The CVSS metrics indicate a low ba...
CVE-2008-0334
Cross-site scripting XSS vulnerability in pm/language/spanish/preferences.php in PMachine Pro 2.4.1 allows remote attackers to inject arbitrary web script or HTML via the LPREFNAME855 parameter...
pMachine Pro 2.4.1 - Multiple Cross-Site Scripting Vulnerabilities
pMachine Pro 2.4.1 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/27282/info pMachine Pro is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execut...
pMachinePro-241-xss.txt
[email protected] found: pMachine Pro 2.4.1 Cross Site Scripting Vulnerability http://pmachinepro.com/ Vulnerable: site/path/pm/language/spanish/preferences.php Variables: LPREFGROUPS100 LPREFGROUPS110 LPREFNAME810 LPREFNAME850 etc PoC:...
pMachine Pro 2.4.1 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/27282/info pMachine Pro is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in t...
CVE-2005-0513
The CVE-2005-0513 issue is a PHP remote file inclusion in the Email This Entry add-on for pMachine Pro 2.4 (and possibly other pMachine Free variants) via mail_autocheck.php. An attacker can set pm_path to a URL containing PHP code, enabling arbitrary code execution on the remote server. The rela...
CVE-2005-0513
PHP remote file inclusion vulnerability in mailautocheck.php in the Email This Entry add-on for pMachine Pro 2.4, and possibly other versions including pMachine Free, allows remote attackers to execute arbitrary PHP code by directly requesting mailautocheck.php and modifying the pmpath parameter ...
CVE-2003-1086
CVE-2003-1086 is a PHP remote file inclusion vulnerability in pm/lib.inc.php affecting pMachine Free and pMachine Pro 2.2/2.2.1. The issue arises from unvalidated pm_path, allowing an attacker to reference a remote URL containing PHP code and execute it on the server. Impact is remote code execut...
CVE-2005-0513
PHP remote file inclusion vulnerability in mailautocheck.php in the Email This Entry add-on for pMachine Pro 2.4, and possibly other versions including pMachine Free, allows remote attackers to execute arbitrary PHP code by directly requesting mailautocheck.php and modifying the pmpath parameter ...
PMachine Pro 2.4 - Remote File Inclusion
source: https://www.securityfocus.com/bid/12597/info PMachine Pro is reported prone to a remote file include vulnerability. This issue affects the 'mailautocheck.php' script. An attacker may leverage this issue to execute arbitrary server-side script code on an affected computer with the privileg...
PMachine Pro 2.4 - Remote File Inclusion
PMachine Pro 2.4 - Remote File Inclusion source: https://www.securityfocus.com/bid/12597/info PMachine Pro is reported prone to a remote file include vulnerability. This issue affects the 'mailautocheck.php' script. An attacker may leverage this issue to execute arbitrary server-side script code ...
CVE-2003-1086
PHP remote file inclusion vulnerability in pm/lib.inc.php in pMachine Free and pMachine Pro 2.2 and 2.2.1 allows remote attackers to execute arbitrary PHP code by modifying the pmpath parameter to reference a URL on a remote web server that contains the code...