43 matches found
EUVD-2007-3266
Malware in sbrugna...
EUVD-2006-4908
Malware in sbrugna...
EUVD-2006-4909
Malware in sbrugna...
Site@School <= 2.4.02 - Remote File Upload Exploit
No description provided by source. Title: Site@School 2.4.02 and below Multiple remote Command Execution Vulnerabilities Vendor: Site@School webiste : http://siteatschool.sourceforge.net/ Version : = 2.4.02 Severity: Critical Discovered by: Simo64 simo64atmorxorg Exploit writting by: Simo Ben...
BPStudent 1.0 - Blind SQL Injection
No description provided by source. x========================================================================================================================================x | AntiSecuritydotorg |...
Site@School <= 2.4.10 (fckeditor) Session Hijacking / File Upload Exploit
No description provided by source. ?php / ------------------------------------------------------------------------- Site@School = 2.4.10 fckeditor Session Hijacking / File Upload Exploit ------------------------------------------------------------------------- author...: EgiX mail.....:...
Site@School 2.4.10 SQL Injection & XSS vulnerabilities
Advisory: Site@School 2.4.10 SQL Injection & XSS vulnerabilities Advisory ID: SSCHADV2011-030 Author: Stefan Schurtz Affected Software: Successfully tested on Site@School 2.4.10 Vendor URL: http://sourceforge.net/projects/siteatschool/ Vendor Status: insecure and no longer maintained CVE-ID: -...
Site@School 2.4.10 Cross Site Scripting / SQL Injection
Advisory: Site@School 2.4.10 SQL Injection & XSS vulnerabilities Advisory ID: SSCHADV2011-030 Author: Stefan Schurtz Affected Software: Successfully tested on Site@School 2.4.10 Vendor URL: http://sourceforge.net/projects/siteatschool/ Vendor Status: insecure and no longer maintained CVE-ID: -...
Site@School 2.4.10 - index.php Cross-Site Scripting SQL Injection
Site@School 2.4.10 - index.php Cross-Site Scripting SQL Injection source: https://www.securityfocus.com/bid/50195/info Site@School is prone to multiple SQL-injection and cross-site scripting vulnerabilities. Exploiting these issues could allow an attacker to steal cookie-based authentication...
Site@School 2.4.10 - '/index.php' Cross-Site Scripting / SQL Injection
source: https://www.securityfocus.com/bid/50195/info Site@School is prone to multiple SQL-injection and cross-site scripting vulnerabilities. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or...
BPStudent 1.0 blind SQL Injection
Exploit for unknown platform in category web applications ================================= BPStudent 1.0 blind SQL Injection ================================= x========================================================================================================================================...
BPStudent 1.0 - Blind SQL Injection
BPStudent 1.0 - Blind SQL Injection x========================================================================================================================================x | AntiSecuritydotorg |...
Site@School <= 2.4.10 (fckeditor) Session Hijacking / File Upload Exploit
No description provided by source. ?php / ------------------------------------------------------------------------- Site@School = 2.4.10 fckeditor Session Hijacking / File Upload Exploit ------------------------------------------------------------------------- author...: EgiX mail.....:...
Site@School 2.4.10 - FCKeditor Session Hijacking Arbitrary File Upload
Site@School 2.4.10 - FCKeditor Session Hijacking Arbitrary File Upload ?php / ------------------------------------------------------------------------- Site@School = 2.4.10 fckeditor Session Hijacking / File Upload Exploit -------------------------------------------------------------------------...
Site@School 2.4.10 - 'FCKeditor' Session Hijacking / Arbitrary File Upload
?php / ------------------------------------------------------------------------- Site@School = 2.4.10 fckeditor Session Hijacking / File Upload Exploit ------------------------------------------------------------------------- author...: EgiX mail.....: n0b0d13satgmaildotcom link.....:...
Sql injection
SQL injection vulnerability in starnet/addons/slideshowfull.php in Site@School 2.3.10 and earlier allows remote attackers to execute arbitrary SQL commands via the albumname parameter...
CVE-2008-0129
SQL injection vulnerability in starnet/addons/slideshowfull.php in Site@School 2.3.10 and earlier allows remote attackers to execute arbitrary SQL commands via the albumname parameter...
CVE-2008-0129
CVE-2008-0129 affects Site@School 2.3.10 and earlier. The vulnerability lies in starnet/addons/slideshow_full.php where the album_name parameter is used in a database query without proper input sanitization, causing an SQL injection. The issue enables remote attackers to execute arbitrary SQL com...
CVE-2008-0129
SQL injection vulnerability in starnet/addons/slideshowfull.php in Site@School 2.3.10 and earlier allows remote attackers to execute arbitrary SQL commands via the albumname parameter...
Site@School <= 2.3.10 Remote Blind SQL Injection Exploit
No description provided by source. ? / -------------------------------------------------------- Site@School = 2.3.10 Remote Blind SQL Injection Exploit -------------------------------------------------------- author...: EgiX mail.....: n0b0d13satgmaildotcom link.....: http:// details..: works wit...