EUVD-2002-0214

Malware in sbrugna...

chacmool Private Message System 1.1.3 send.php Arbitrary Message Access

No description provided by source. source: http://www.securityfocus.com/bid/11671/info Private Message System is reported prone to multiple vulnerabilities that can allow remote attackers to carry out cross-site scripting attacks and disclose arbitrary private messages. Private Message System 1.1...

chacmool Private Message System 1.1.3 send.php tid Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/11671/info Private Message System is reported prone to multiple vulnerabilities that can allow remote attackers to carry out cross-site scripting attacks and disclose arbitrary private messages. Private Message System 1.1...

Private Message System 2.x index.php Page Parameter Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9308/info Private Message System is prone to a cross-site scripting vulnerability. This issue may be exploited by creating a malicious link to a site hosting the software with hostile HTML and script code embedded in URI...

Xoops 1.3.5 Private Message System Font Attributes HTML Injection

No description provided by source. source: http://www.securityfocus.com/bid/6344/info Xoops includes a Private Message System for users, so that they may send messages to one another. HTML tags used for font attributes are not sufficiently filtered of malicious HTML code. This makes it possible f...

Private Message System 2.3.0 <= XSS Vulnerability

Exploit for php platform in category web applications Exploit Title: Private Message System 2.3.0 alert1337; Test : http://upload.traidnt.net/upfiles/4ul41244.jpg Demo: 01 :http://ptl.su/pms/index.php?page="alert1337; 02 :http://qgcomedyshow.freehostia.com/community/mail/index.php?page="alert1337...

PunBB Private Message System <= 1.2.3 XSS Vulnerability (5)

Exploit for php platform in category web applications =========================================================== PunBB Private Message System Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : Inj3ct0r.com 0 1 + Support e-mail : submitatinj3ct0r.com 1 0 0...

chacmool Private Message System 1.1.3 - send.php?tid Cross-Site Scripting

chacmool Private Message System 1.1.3 - send.php?tid Cross-Site Scripting source: https://www.securityfocus.com/bid/11671/info Private Message System is reported prone to multiple vulnerabilities that can allow remote attackers to carry out cross-site scripting attacks and disclose arbitrary...

chacmool Private Message System 1.1.3 - &#039;send.php&#039; Arbitrary Message Access

source: https://www.securityfocus.com/bid/11671/info Private Message System is reported prone to multiple vulnerabilities that can allow remote attackers to carry out cross-site scripting attacks and disclose arbitrary private messages. Private Message System 1.1.3 is reported vulnerable to these...

chacmool Private Message System 1.1.3 - send.php Arbitrary Message Access

chacmool Private Message System 1.1.3 - send.php Arbitrary Message Access source: https://www.securityfocus.com/bid/11671/info Private Message System is reported prone to multiple vulnerabilities that can allow remote attackers to carry out cross-site scripting attacks and disclose arbitrary...

chacmool Private Message System 1.1.3 - &#039;send.php?tid&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/11671/info Private Message System is reported prone to multiple vulnerabilities that can allow remote attackers to carry out cross-site scripting attacks and disclose arbitrary private messages. Private Message System 1.1.3 is reported vulnerable to these...

Private Message System 2.x - index.php?Page Cross-Site Scripting

Private Message System 2.x - index.php?Page Cross-Site Scripting source: https://www.securityfocus.com/bid/9308/info Private Message System is prone to a cross-site scripting vulnerability. This issue may be exploited by creating a malicious link to a site hosting the software with hostile HTML a...

Private Message System 2.x - &#039;index.php?Page&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/9308/info Private Message System is prone to a cross-site scripting vulnerability. This issue may be exploited by creating a malicious link to a site hosting the software with hostile HTML and script code embedded in URI parameters. If the link is followe...

Xoops 1.3.5 - Private Message System Font Attributes HTML Injection

source: https://www.securityfocus.com/bid/6344/info Xoops includes a Private Message System for users, so that they may send messages to one another. HTML tags used for font attributes are not sufficiently filtered of malicious HTML code. This makes it possible for an attacker to supply malicious...

CVE-2002-0217

Cross-site scripting CSS vulnerabilities in the Private Message System for XOOPS 1.0 RC1 allow remote attackers to execute Javascript on other web clients via 1 the Title field or a Private Message Box or 2 the image field parameter in pmlite.php...

Xoops Private Message System Script injection

-- Xoops Private Message System Script injection -- Discovered on 29/01/2002 Vendor: http://xoops.sourceforge.net -- Overview -- XOOPS is an open source portal script written extensively in object-oriented PHP, backend with MySQL Database. Xoops offers for members a Private Message System mail li...