31 matches found
EUVD-2006-7117
Malware in sbrugna...
EUVD-2007-6105
Malware in sbrugna...
EUVD-2006-7118
Malware in sbrugna...
EUVD-2005-1757
Malware in sbrugna...
PHP Poll Creator 1.0.1 Poll_Vote.PHP Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13760/info PHP Poll Creator is affected by a remote file-include vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary server-side...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in index.php in M2Scripts MySpace Scripts Poll Creator allow remote attackers to inject arbitrary web script or HTML via the 1 title, 2 intro, and 3 question parameters, and 4 unspecified answer parameters, in a createnew action. NOTE: some of the...
CVE-2007-6136
CVE-2007-6136 involves multiple XSS vulnerabilities in index.php of M2Scripts MySpace Scripts Poll Creator. The flaws allow remote attackers to inject arbitrary web script or HTML via parameters (title, intro, question, and unspecified answer parameters) in the create_new action. The affected sof...
CVE-2007-6136
Multiple cross-site scripting XSS vulnerabilities in index.php in M2Scripts MySpace Scripts Poll Creator allow remote attackers to inject arbitrary web script or HTML via the 1 title, 2 intro, and 3 question parameters, and 4 unspecified answer parameters, in a createnew action. NOTE: some of the...
mps-insertion.txt
HSCMySpace Scripts - Poll Creator JavaScript Injection Vulnerability Our MySpace Poll Creator script is the ultimate addition to your MySpace resource site. The script enables your user to quickly and easily create a poll that they can post to profile or bulletin to all their friends. Everyone...
MySpace Scripts Poll Creator - index.php HTML Injection
MySpace Scripts Poll Creator - index.php HTML Injection source: https://www.securityfocus.com/bid/26544/info MySpace Scripts Poll Creator is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated...
MySpace Scripts - Poll Creator JavaScript Injection Vulnerability
HSCMySpace Scripts - Poll Creator JavaScript Injection Vulnerability Our MySpace Poll Creator script is the ultimate addition to your MySpace resource site. The script enables your user to quickly and easily create a poll that they can post to profile or bulletin to all their friends. Everyone...
CVE-2006-7136
Multiple PHP remote file inclusion vulnerabilities in PHP Poll Creator phpPC 1.04 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the relativerpfad parameter to 1 poll.php, 2 pollkommentar.php, and 3 pollsm.php, different vectors and version than CVE-2005-1755...
CVE-2006-7135
PHP remote file inclusion vulnerability in lib/functions.inc.php in PHP Poll Creator phpPC 1.04 allows remote attackers to execute arbitrary PHP code via a URL in the relativerpfad parameter, a different vector and version than CVE-2005-1755. NOTE: the provenance of this information is unknown; t...
CVE-2006-7136
Multiple PHP remote file inclusion vulnerabilities in PHP Poll Creator phpPC 1.04 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the relativerpfad parameter to 1 poll.php, 2 pollkommentar.php, and 3 pollsm.php, different vectors and version than CVE-2005-1755...
CVE-2006-7135
PHP remote file inclusion vulnerability in lib/functions.inc.php in PHP Poll Creator phpPC 1.04 allows remote attackers to execute arbitrary PHP code via a URL in the relativerpfad parameter, a different vector and version than CVE-2005-1755. NOTE: the provenance of this information is unknown; t...
CVE-2006-7135
CVE-2006-7135: Affects PHP Poll Creator (phpPC) 1.04; vulnerable component is lib/functions.inc.php. Remote PHP code execution possible via a URL in the relativer_pfad parameter. No explicit remediation or patch details are provided in the supplied documents. The connected sources do not reveal a...
PHP Poll Creator Relativer_PFAD远程文件包含漏洞
PHP Poll Creator是一款基于php的WEB应用程序。 PHP Poll Creator不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是由于多个脚本对用户提交的'RelativerPFAD'参数缺少过滤,提交恶意的远程服务器作为包含对象,可导致以WEB进程权限执行任意PHP代码。 php PC PHP Polling Creator 1.03 php PC PHP Poll Creator 1.0.1 php PC PHP Poll Creator 1.04 目前没有解决方案提供:...
phpPC 1.04 Multiples Remote File Inclusion
phpPC 1.04 Multiples Remote File Inclusion Script : PHP Poll Creator Version : 1.04 Vendor URL : http://www.phppc.de Impact : Remote File Inclusion Discovered by : iss4m Contact : [email protected] Vulnerable code in poll.php -------------------------------- ?php if $isphppcincluded != 1 include...
phpPC 1.04 - Multiple Remote File Inclusions
phpPC 1.04 - Multiple Remote File Inclusions phpPC 1.04 Multiples Remote File Inclusion Script : PHP Poll Creator Version : 1.04 Vendor URL : http://www.phppc.de Impact : Remote File Inclusion Discovered by : iss4m Contact : [email protected] Vulnerable code in poll.php...
phpPC <= 1.04 Multiple Remote File Inclusion Vulnerabilities
No description provided by source. phpPC 1.04 Multiples Remote File Inclusion Script : PHP Poll Creator Version : 1.04 Vendor URL : http://www.phppc.de Impact : Remote File Inclusion Discovered by : iss4m Contact : [email protected] Vulnerable code in poll.php -------------------------------- ?ph...