EUVD-2008-4782

Malware in sbrugna...

EUVD-2008-4781

Malware in sbrugna...

CVE-2007-2679

PHP file inclusion vulnerability in index.php in Ivan Peevski gallery 0.3 in Simple PHP Scripts sphp allows remote attackers to execute arbitrary PHP code via a UNC share pathname or a local file pathname in the gallery parameter, which is accessed by the fileexists function. NOTE: the provenance...

PT-2023-24995 · Unknown · Simplephpscripts Event Script

Name of the Vulnerable Software and Affected Versions: SimplePHPscripts Event Script version 2.1 Description: A vulnerability was found in the file preview.php of the component URL Parameter Handler, which leads to cross site scripting. The attack may be launched remotely. Recommendations: For...

News Script PHP Pro Cross-Site Scripting Vulnerability

News Script PHP Pro is a PHP/MySQL based web script from Simple PHP Scripts for displaying news on your website. A cross-site scripting vulnerability exists in News Script PHP Pro 2.3. The vulnerability can be exploited to conduct cross-site scripting attacks via the editorname parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in complete.php in Simple PHP Scripts blog 0.3 allows remote attackers to inject arbitrary web script or HTML via the id parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in Simple PHP Scripts gallery 0.1, 0.3, and 0.4 allows remote attackers to inject arbitrary web script or HTML via the gallery parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...

CVE-2008-4802

CVE-2008-4802 is described as a Cross-site scripting (XSS) vulnerability in complete.php of Simple PHP Scripts blog 0.3, where an attacker can inject arbitrary script or HTML via the id parameter. The root cause is unsanitized user input in that parameter. Affected product/component: Simple PHP S...

CVE-2008-4802

Cross-site scripting XSS vulnerability in complete.php in Simple PHP Scripts blog 0.3 allows remote attackers to inject arbitrary web script or HTML via the id parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

CVE-2008-4803

CVE-2008-4803 affects the Simple PHP Scripts Gallery (index.php) versions 0.1, 0.3 and 0.4. The vulnerability is a reflected XSS triggered through the gallery parameter, allowing an attacker to inject arbitrary script/HTML. The available documents do not provide remediation details or explicit ex...

CVE-2007-2679

PHP file inclusion vulnerability in index.php in Ivan Peevski gallery 0.3 in Simple PHP Scripts sphp allows remote attackers to execute arbitrary PHP code via a UNC share pathname or a local file pathname in the gallery parameter, which is accessed by the fileexists function. NOTE: the provenance...

CVE-2007-2679

Summary: CVE-2007-2679 is a PHP file inclusion vulnerability in Ivan Peevski gallery 0.3 (Simple PHP Scripts, sPHP). Affected component: index.php; vulnerability arises from using a user-supplied gallery parameter as input to file_exists, enabling inclusion of arbitrary PHP code through UNC or lo...