EUVD-2006-2984

Malware in sbrugna...

TAL RateMyPic 1.0 - Multiple Input Validation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/18230/info TAL RateMyPic is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to execut...

CVE-2006-2987

CVE-2006-2987 affects Dominios Europa PICRATE (aka TAL RateMyPic) 1.0. The vulnerability is a set of SQL injection flaws in which arbitrary SQL commands can be injected via parameters to index.php (id, voteid, vfiel) and add.php (nick, email, city, messen, message). The root cause is improper han...

CVE-2006-2812

CVE-2006-2812 affects Dominios Europa PICRATE (aka TAL RateMyPic) 1.0. Multiple XSS flaws exist in index.php allowing remote attackers to inject arbitrary script/HTML via a javascript: URI in the SRC attribute of an IMG element (in name/nick, email, and comment fields) and via the id parameter. R...

TAL RateMyPic v1.0

TAL RateMyPic v1.0 Homepage: http://www.dominioseuropa.com/index.php Effected files: index.php input boxes XSS proof of concept: By putting the following in the name, email, or comment boxes: IMG SRC=javascript:alert'XSS' And By URL Injection:...

TAL RateMyPic 1.0 - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/18230/info TAL RateMyPic is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to execute arbitrary HTML and script code i...