25 matches found
EUVD-2002-1863
Malware in sbrugna...
EUVD-2003-0741
Malware in sbrugna...
EUVD-2003-0742
Malware in sbrugna...
CVE-2003-0751
SQL injection vulnerability in passdone.php for PY-Membres 4.2 and earlier allows remote attackers to execute arbitrary SQL queries via the email parameter...
CVE-2002-1884
index.php in Py-Membres 3.1 allows remote attackers to log in as an administrator by setting the pymembs parameter to "admin"...
CVE-2003-0750
secure.php in PY-Membres 4.2 and earlier allows remote attackers to bypass authentication by setting the adminpy parameter...
Py-Membres 3.1 Index.PHP Unauthorized Access Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5849/info A vulnerability has been reported for Py-Membres 3.1 that allows remote attackers to obtain administrative privileges on vulnerable installations. Reportedly, Py-Membres does not fully check some URI parameters...
Py-Membres 4.x Secure.PHP Unauthorized Access Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8499/info A vulnerability has been reported for Py-Membres that allows remote attackers to obtain administrative privileges on vulnerable installations. Reportedly, Py-Membres does not fully check some URI parameters. Thu...
Py-Membres 4.x Pass_done.PHP Remote SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8500/info A vulnerability has been reported for Py-Membres that allows remote attackers to modify the logic of SQL queries. It has been reported that an input validation error exists in the passdone.php file included with...
Py-Membres 4.0 - Remote SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7301/info A vulnerability has been reported for Py-Membres 4.0 that allows remote attackers to modify the logic of SQL queries. It has been reported that an input validation error exists in the login.php file included wit...
CVE-2002-1884
index.php in Py-Membres 3.1 allows remote attackers to log in as an administrator by setting the pymembs parameter to "admin"...
CVE-2002-1884
CVE-2002-1884 : Public sources describe a login bypass in Py-Membres 3.1 where an attacker can become administrator by setting the pymembs parameter to "admin" in index.php. The connected documents confirm the affected product/version and the root cause (parameters controlling authentication). No...
CVE-2003-0750
secure.php in PY-Membres 4.2 and earlier allows remote attackers to bypass authentication by setting the adminpy parameter...
CVE-2003-0751
SQL injection vulnerability in passdone.php for PY-Membres 4.2 and earlier allows remote attackers to execute arbitrary SQL queries via the email parameter...
CVE-2003-0750
The CVE-2003-0750 entry concerns secure.php in PY-Membres 4.2 and earlier, where remote attackers can bypass authentication by setting the adminpy parameter. Affected component is the secure.php authentication logic in PY-Membres; the root cause is an authentication bypass via a crafted adminpy p...
CVE-2003-0751
SQL injection vulnerability in passdone.php for PY-Membres 4.2 and earlier allows remote attackers to execute arbitrary SQL queries via the email parameter...
CVE-2003-0751
The CVE-2003-0751 entry concerns a SQL injection in pass_done.php affecting PY-Membres 4.2 and earlier. The vulnerability arises from unsafely handling the email parameter, allowing remote attackers to execute arbitrary SQL queries. The connected records confirm the core details (affected compone...
Py-Membres 4.x - Secure.php Unauthorized Access
Py-Membres 4.x - Secure.php Unauthorized Access source: https://www.securityfocus.com/bid/8499/info A vulnerability has been reported for Py-Membres that allows remote attackers to obtain administrative privileges on vulnerable installations. Reportedly, Py-Membres does not fully check some URI...
Py-Membres 4.x - Pass_done.php SQL Injection
Py-Membres 4.x - Passdone.php SQL Injection source: https://www.securityfocus.com/bid/8500/info A vulnerability has been reported for Py-Membres that allows remote attackers to modify the logic of SQL queries. It has been reported that an input validation error exists in the passdone.php file...
Py-Membres 4.0 - SQL Injection
Py-Membres 4.0 - SQL Injection source: https://www.securityfocus.com/bid/7301/info A vulnerability has been reported for Py-Membres 4.0 that allows remote attackers to modify the logic of SQL queries. It has been reported that an input validation error exists in the login.php file included with...