CVE-2025-34328

AudioCodes Fax Server and Auto-Attendant IVR appliances (≤ 2.6.23) expose an unauthenticated script-management endpoint in the web administration component (F2MAdmin) at AudioCodes_files/utils/IVR/diagram/ajaxScript.php. The saveScript action writes attacker-supplied data directly to a server-sid...

EUVD-2017-8771

Malware in sbrugna...

EUVD-2008-2277

Malware in sbrugna...

EUVD-2018-7752

Malware in sbrugna...

EUVD-2019-10890

Malware in sbrugna...

EUVD-2018-7069

Malware in sbrugna...

Cross site scripting

A vulnerability was found in GZ Scripts Car Listing Script PHP 1.8. It has been declared as problematic. This vulnerability affects unknown code of the file /preview.php. The manipulation of the argument page/sortby leads to cross site scripting. The attack can be initiated remotely. VDB-233350 i...

Cross site scripting

A vulnerability classified as problematic has been found in SimplePHPscripts News Script PHP Pro 2.4. This affects an unknown part of the file /preview.php of the component URL Parameter Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The...

Cross site scripting

A vulnerability was found in SimplePHPscripts FAQ Script PHP 2.3. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /preview.php of the component URL Parameter Handler. The manipulation leads to cross site scripting. The attack can be...

CVE-2023-3535

The CVE-2023-3535 issue affects SimplePHPscripts FAQ Script PHP 2.3, where the vulnerability exists in the /preview.php file of the URL Parameter Handler. Argument manipulation can trigger cross-site scripting (XSS) and can be exploited remotely over the network. The connected sources consistentl...

News Script PHP Pro Cross-Site Scripting Vulnerability

News Script PHP Pro is a PHP/MySQL based web script from Simple PHP Scripts for displaying news on your website. A cross-site scripting vulnerability exists in News Script PHP Pro 2.3. The vulnerability can be exploited to conduct cross-site scripting attacks via the editorname parameter...

Sql injection

SimplePHPscripts News Script PHP Pro 2.3 is affected by a SQL Injection via the id parameter in an editNews action...

Cross site request forgery (csrf)

SimplePHPscripts News Script PHP Pro 2.3 is affected by a Cross Site Request Forgery CSRF vulnerability, which allows attackers to add new users...

Session fixation

SimplePHPscripts News Script PHP Pro 2.3 does not properly set the HttpOnly Flag from Session Cookies...

Jirafeau Cross-Site Scripting Vulnerability (CNVD-2018-13450)

Jirafeau is a file sharing website system. A cross-site scripting vulnerability exists in the script.php file in Jirafeau versions prior to 3.4.1. A remote attacker can exploit this vulnerability to execute JavaScript code with the 'Content-Type' and 'filename' parameters...

Easy News Pro 1.5 Bypass / SQL Injection / File Upload

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : http://0day.today 0 1 + Support e-mail :...

Event Script PHP 1.1 CMS SQL 注入

No description provided by source...

News Script PHP 1.2 - Multiple Vulnerabilites

No description provided by source. Title: ====== News Script PHP v1.2 - Multiple Web Vulnerabilites Date: ===== 2012-06-07 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=600 VL-ID: ===== 600 Common Vulnerability Scoring System: ==================================== 7.5...

News Script PHP Pro - (fckeditor) File Upload Vulnerability

No description provided by source...

Classified Ads Script PHP v1.1 - SQL Injection Vulnerabilities

Title: ====== Classified Ads Script PHP v1.1 - SQL Injection Vulnerabilities Date: ===== 2012-06-13 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=605 VL-ID: ===== 605 Common Vulnerability Scoring System: ==================================== 5.5 Introduction:...