EUVD-2002-1945

Malware in sbrugna...

CVE-2002-1966

Directory traversal vulnerability in magiccard.cgi in My Postcards Platinum 5.0 and 6.0 allows remote attackers to read arbitrary files via a .. dot dot in the page parameter...

Facebook Will Verify the Physical Location of Ad Buyers with Paper Postcards

It's not a great solution, but it's something: The process of using postcards containing a specific code will be required for advertising that mentions a specific candidate running for a federal office, Katie Harbath, Facebook's global director of policy programs, said. The requirement will not...

Holiday Postcards-Postcard App - Customized SSL, Dangerous filesystem permissions vulnerabilities

HackApp vulnerability scanner discovered that application Holiday Postcards-Postcard App published at the 'play' market has multiple vulnerabilities...

Postcards for congratulations - Base64 encoded String, Dangerous filesystem permissions, MIT license vulnerabilities

HackApp vulnerability scanner discovered that application Postcards for congratulations published at the 'play' market has multiple vulnerabilities...

Design/Logic Flaw

The Touchnote Postcards aka com.touchnote.android application 4.2.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-5721

The Touchnote Postcards aka com.touchnote.android application 4.2.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-5721

The CVE-2014-5721 issue affects Touchnote Postcards (com.touchnote.android) app for Android, version 4.2.7, where the SSL/TLS implementation does not verify X.509 certificates. Root cause: no certificate verification enables man-in-the-middle attackers to spoof servers and capture sensitive infor...

WEBBDOMAIN Post Card <= 1.02 (SQL Injection) Auth Bypass Vuln

No description provided by source. -==============================- Autore: x0r - Road Crew Cms: WebbDomain Web Postcards Bug: Auth ByPass Site Of Seller: http://webbdomain.com -==============================- Exploit: http://webbdomain.com/php/postcarden/admin Username: admin ' or ' 1=1 Pass: x0...

CVE-2008-6623

The CVE-2008-6623 entry describes an SQL injection flaw in WEBBDOMAIN Post Card (Web Postcards) 1.02 and earlier, exploitable via the username parameter in getin.php. Root cause is improper input handling leading to arbitrary SQL execution; remote attackers could potentially exploit it. The conne...

CVE-2008-6622

CVE-2008-6622 is a SQL injection vulnerability in WEBBDOMAIN Post Card (Web Postcards) 1.02, 1.01 and earlier, affecting choosecard.php. The underlying issue allows remote attackers to inject and execute arbitrary SQL commands through the catid parameter. The available references document the aff...

PostEcards (SQL/DD) Multiple Remote Vulnerabilities

No description provided by source. -------------------------------AlpHaNiX---------------------------------- Found By : AlpHaNiX website : www.offensivetrack.org contact : AlpHaATHACKERDOTBZ script : PostEcards download : http://www.funscripts.net/oldcoldfusion/download.php?fname=postcards Exploi...

webbpostcart-sql.txt

-==============================- Autore: x0r - Road Crew Cms: WebbDomain Web Postcards Bug: Auth ByPass Site Of Seller: http://webbdomain.com -==============================- Exploit: http://webbdomain.com/php/postcarden/admin Username: admin ' or ' 1=1 Pass: x0r Live Demo:...

WEBBDOMAIN Post Card <= 1.02 (SQL Injection) Auth Bypass Vuln

Exploit for unknown platform in category web applications ============================================================= WEBBDOMAIN Post Card = 1.02 SQL Injection Auth Bypass Vuln ============================================================= -==============================- Autore: x0r - Road Crew...

WEBBDOMAIN Post Card 1.02 - Authentication Bypass

-==============================- Autore: x0r - Road Crew Cms: WebbDomain Web Postcards Bug: Auth ByPass Site Of Seller: http://webbdomain.com -==============================- Exploit: http://webbdomain.com/php/postcarden/admin Username: admin ' or ' 1=1 Pass: x0r Live Demo:...

WEBBDOMAIN Post Card 1.02 - Authentication Bypass

WEBBDOMAIN Post Card 1.02 - Authentication Bypass -==============================- Autore: x0r - Road Crew Cms: WebbDomain Web Postcards Bug: Auth ByPass Site Of Seller: http://webbdomain.com -==============================- Exploit: http://webbdomain.com/php/postcarden/admin Username: admin ' or...

CVE-2002-1966

CVE-2002-1966 affects My Postcards Platinum 5.0 and 6.0, where a directory traversal bug in magiccard.cgi lets remote attackers read arbitrary files by providing a .. in the page parameter. This has been consistently described across multiple sources (Red Hat, CVE lists, NVD). The connected docum...

CVE-2002-1966

Directory traversal vulnerability in magiccard.cgi in My Postcards Platinum 5.0 and 6.0 allows remote attackers to read arbitrary files via a .. dot dot in the page parameter...

CVE-2002-1966

Directory traversal vulnerability in magiccard.cgi in My Postcards Platinum 5.0 and 6.0 allows remote attackers to read arbitrary files via a .. dot dot in the page parameter...

My Postcards 6.0 - MagicCard.cgi Arbitrary File Disclosure

My Postcards 6.0 - MagicCard.cgi Arbitrary File Disclosure source: https://www.securityfocus.com/bid/5029/info My Postcards is a commercial available eletronic postcard system. It is available for Unix and Linux Operating Systems. The magiccard.cgi script does not properly handle some types of...