38 matches found
EUVD-2009-4352
Malware in sbrugna...
EUVD-2008-2112
Malware in sbrugna...
EUVD-2006-7041
Malware in sbrugna...
EUVD-2007-0946
Malware in sbrugna...
EUVD-2008-2113
Malware in sbrugna...
Power Editor 2.0 - Remote File Disclosure / Edit Vulnerability
No description provided by source. ..:::::Power Editor LOCAL FILE INCLUSION Vulnerbility ::::... Virangar Security Team www.virangar.net -------- Discoverd By :Virangar Security Team hadihadi special tnx to:MR.nosrati,black.shadowes,MR.hesy,Zahra & all virangar members & all iranian hackerz...
Sql injection
SQL injection vulnerability in Scriptsez.net Ez Album allows remote attackers to execute arbitrary SQL commands via the id parameter in a view action to index.php...
CVE-2012-0983
The CVE-2012-0983 entry concerns a SQL injection in Scriptsez.net Ez Album. In the affected workflow, an attacker can supply a crafted value for the id parameter in a view action to index.php , enabling remote execution of arbitrary SQL commands. The vulnerability is reported with a High severity...
CVE-2012-0983
SQL injection vulnerability in Scriptsez.net Ez Album allows remote attackers to execute arbitrary SQL commands via the id parameter in a view action to index.php...
Smart PHP Uploader 1.0 Shell Upload
Smart PHP Uploader 1.0 Remote File Upload Vulnerability Author : Phenom vendor : http://www.scriptsez.net language : PHP Version : 1.0 Exploit : 1- http://server/path/phpuploader.php 2- upload your shell 3- http://server/path/yourshell.php...
Smart PHP Uploader 1.0 Remote File Upload Vulnerability
No description provided by source. Smart PHP Uploader 1.0 Remote File Upload Vulnerability Author : Phenom vendor : http://www.scriptsez.net language : PHP Version : 1.0 Exploit : 1- http://server/path/phpuploader.php...
Smart PHP Uploader 1.0 - Arbitrary File Upload
Smart PHP Uploader 1.0 - Arbitrary File Upload Smart PHP Uploader 1.0 Remote File Upload Vulnerability Author : Phenom vendor : http://www.scriptsez.net language : PHP Version : 1.0 Exploit : 1- http://server/path/phpuploader.php...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in Scriptsez.net Ez Poll Hoster EPH allow remote attackers to 1 hijack the authentication of arbitrary users for requests that delete polls via the deletepoll action to index.php; and hijack the authentication of administrators for requests...
CVE-2009-4384
Multiple cross-site scripting XSS vulnerabilities in Scriptsez.net Ez Poll Hoster EPH allow remote attackers to inject arbitrary web script or HTML via the 1 pid parameter in a code action to index.php and the 2 uid parameter in a view action to profile.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Scriptsez.net Ez Poll Hoster EPH allow remote attackers to inject arbitrary web script or HTML via the 1 pid parameter in a code action to index.php and the 2 uid parameter in a view action to profile.php...
CVE-2009-4385
Multiple cross-site request forgery CSRF vulnerabilities in Scriptsez.net Ez Poll Hoster EPH allow remote attackers to 1 hijack the authentication of arbitrary users for requests that delete polls via the deletepoll action to index.php; and hijack the authentication of administrators for requests...
CVE-2009-4385
CVE-2009-4385 describes multiple CSRF vulnerabilities in Scriptsez.net Ez Poll Hoster (EPH). Attackers can hijack user authentication to perform delete_poll (index.php) and administrator authentication to delete users (admin.php) or send arbitrary email (admin.php). The affected components are th...
CVE-2009-4384
CVE-2009-4384 affects Scriptsez.net Ez Poll Hoster (EPH). The vulnerabilities are cross-site scripting (XSS) via two parameters: the pid parameter in a code action to index.php and the uid parameter in a view action to profile.php. Root cause: insufficient input validation allowing injection of a...
CVE-2009-4385
Multiple cross-site request forgery CSRF vulnerabilities in Scriptsez.net Ez Poll Hoster EPH allow remote attackers to 1 hijack the authentication of arbitrary users for requests that delete polls via the deletepoll action to index.php; and hijack the authentication of administrators for requests...
CVE-2009-4384
Multiple cross-site scripting XSS vulnerabilities in Scriptsez.net Ez Poll Hoster EPH allow remote attackers to inject arbitrary web script or HTML via the 1 pid parameter in a code action to index.php and the 2 uid parameter in a view action to profile.php...