EUVD-2007-5122

Malware in sbrugna...

EUVD-2007-1232

Malware in sbrugna...

EUVD-2010-1371

Malware in sbrugna...

EUVD-2009-1841

Malware in sbrugna...

The vulnerability of the SiTex-Gosuslu development platform’s component, related to insufficient validation of input data, allows for arbitrary queries to be executed against the database.

The vulnerability of the SiTex development platform’s service component is related to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary requests to the database using a specially created POST request...

The vulnerability of the SiTex development platform’s SiTex-Gosuslu component, related to insufficient protection of the website structure, allows attackers to carry out cross-site scripting attacks.

The vulnerability of the SiTex-Service component of the distributed application development platform SiTex is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks by manipulating the...

The vulnerability of the file loading mechanism on the server of the distributed application development platform SiTex allows a perpetrator to upload a malicious file to the server.

The vulnerability of the file loading mechanism on the server of the distributed application development platform SiTex is related to the lack of measures for cleaning incoming data. Exploiting this vulnerability allows a malicious actor to upload a malicious file to the server remotely...

The vulnerability of the SiTex development platform’s SiTex-Gosuslu component, which stems from the absence of a CSRF token in web forms, allows actions to be performed on behalf of users, including administrators.

The vulnerability of the SiTex-Service component of the distributed application development platform involves the absence of a CSRF token in web forms. Exploiting this vulnerability allows an attacker to execute cross-site requests on behalf of users, including administrators, through a specially...

The vulnerability of the SiTex distributed application development platform, related to insufficient verification of access rights, allows a perpetrator to disclose protected information.

The vulnerability of the SiTex distributed application development platform is related to insufficient verification of user access rights to data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to disclose protected information...

SiteX <= 0.7.4.418 (THEME_FOLDER) Local File Inclusion Vulnerabilities

No description provided by source. =-=-local file include-=-= -=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=-=-=-=-=-=-=-= script:SiteX074build418.zip ------------------------------------------------- Author: ahmadbady my site :Coming Soon =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= download...

Sql injection

SQL injection vulnerability in photo.php in SiteX 0.7.4 beta allows remote attackers to execute arbitrary SQL commands via the albumid parameter...

CVE-2010-1343

SQL injection vulnerability in photo.php in SiteX 0.7.4 beta allows remote attackers to execute arbitrary SQL commands via the albumid parameter...

CVE-2010-1343

SQL injection vulnerability in photo.php in SiteX 0.7.4 beta allows remote attackers to execute arbitrary SQL commands via the albumid parameter...

CVE-2010-1343

CVE-2010-1343 concerns a SQL injection in SiteX 0.7.4 beta, affecting the photo.php script via the albumid parameter. The underlying issue is unsanitized input incorporated into a database query, enabling remote attackers to manipulate queries and potentially access sensitive data. Public sources...

SiteX CMS 0.7.4 Beta SQL Injection

?php echo "\n\n\n"; echo " \n"; echo " Product: SiteX CMS 0.7.4 beta /photo.php SQL-Injection exploit \n"; echo " Usage: php.exe sitex.php www.site.com /cmspath/ \n"; echo " Require: Magicquotes = off \n"; echo " Author: Sc0rpi0n RUS http://scorpion.su \n"; echo " Special for Antichat...

SiteX CMS 0.7.4 beta (/photo.php) SQL-Injection exploit

No description provided by source. ?php echo "\n\n\n"; echo " \n"; echo " Product: SiteX CMS 0.7.4 beta /photo.php SQL-Injection exploit \n"; echo " Usage: php.exe sitex.php www.site.com /cmspath/ \n"; echo " Require: Magicquotes = off \n"; echo " Author: Sc0rpi0n RUS http://scorpion.su \n"; echo...

SiteX photo.php albumid Parameter SQL Injection

The version of SiteX hosted on the remote web server fails to sanitize input to the 'albumid' parameter of the 'photo.php' script before using it in a database query. Provided PHP's 'magicquotesgpc' setting is disabled, an unauthenticated, remote attacker can leverage this issue to manipulate SQL...

SiteX CMS 0.7.4 Beta - photo.php SQL Injection

SiteX CMS 0.7.4 Beta - photo.php SQL Injection ?php echo "\n\n\n"; echo " \n"; echo " Product: SiteX CMS 0.7.4 beta /photo.php SQL-Injection exploit \n"; echo " Usage: php.exe sitex.php www.site.com /cmspath/ \n"; echo " Require: Magicquotes = off \n"; echo " Author: Sc0rpi0n RUS http://scorpion....

SiteX CMS 0.7.4 beta (photo.php) SQL-Injection exploit

Exploit for php platform in category web applications ====================================================== SiteX CMS 0.7.4 beta photo.php SQL-Injection exploit ====================================================== ?php echo "\n\n\n"; echo " \n"; echo " Product: SiteX CMS 0.7.4 beta /photo.php...

SiteX CMS 0.7.4 Beta - &#039;photo.php&#039; SQL Injection

?php echo "\n\n\n"; echo " \n"; echo " Product: SiteX CMS 0.7.4 beta /photo.php SQL-Injection exploit \n"; echo " Usage: php.exe sitex.php www.site.com /cmspath/ \n"; echo " Require: Magicquotes = off \n"; echo " Author: Sc0rpi0n RUS http://scorpion.su \n"; echo " Special for Antichat...