16 matches found
EUVD-2006-0816
Malware in sbrugna...
EUVD-2006-0815
Malware in sbrugna...
EUVD-2006-0817
Malware in sbrugna...
EV0084.txt
New eVuln Advisory: Skate Board Multimple Vulnerabilities http://evuln.com/vulns/84/summary.html --------------------Summary---------------- eVuln ID: EV0084 CVE: CVE-2006-0809 CVE-2006-0810 CVE-2006-0811 Software: Skate Board Sowtware's Web Site: http://bb.jiraiya.se/main.php?content=start...
[eVuln] Skate Board Multimple Vulnerabilities
New eVuln Advisory: Skate Board Multimple Vulnerabilities http://evuln.com/vulns/84/summary.html --------------------Summary---------------- eVuln ID: EV0084 CVE: CVE-2006-0809 CVE-2006-0810 CVE-2006-0811 Software: Skate Board Sowtware's Web Site: http://bb.jiraiya.se/main.php?content=start...
CVE-2006-0811
Cross-site scripting XSS vulnerability in reguser.php in Skate Board 0.9 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters involved with the registration form...
CVE-2006-0810
Unspecified vulnerability in config.php in Skate Board 0.9 allows remote authenticated administrators to execute arbitrary PHP code by causing certain variables in config.php to be modified, possibly due to XSS or direct static code injection...
CVE-2006-0809
Multiple SQL injection vulnerabilities in Skate Board 0.9 allow remote attackers to execute arbitrary SQL commands via the 1 usern parameter in a sendpass.php, and the 2 usern and 3 passwd parameters and 4 sfcookie cookie in b login.php and c logged.php...
Sql injection
Multiple SQL injection vulnerabilities in Skate Board 0.9 allow remote attackers to execute arbitrary SQL commands via the 1 usern parameter in a sendpass.php, and the 2 usern and 3 passwd parameters and 4 sfcookie cookie in b login.php and c logged.php...
Cross site scripting
Cross-site scripting XSS vulnerability in reguser.php in Skate Board 0.9 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters involved with the registration form...
CVE-2006-0810
Unspecified vulnerability in config.php in Skate Board 0.9 allows remote authenticated administrators to execute arbitrary PHP code by causing certain variables in config.php to be modified, possibly due to XSS or direct static code injection...
CVE-2006-0809
Multiple SQL injection vulnerabilities in Skate Board 0.9 allow remote attackers to execute arbitrary SQL commands via the 1 usern parameter in a sendpass.php, and the 2 usern and 3 passwd parameters and 4 sfcookie cookie in b login.php and c logged.php...
CVE-2006-0811
Cross-site scripting XSS vulnerability in reguser.php in Skate Board 0.9 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters involved with the registration form...
CVE-2006-0810
Skate Board 0.9 is affected by CVE-2006-0810 via a PHP code injection vulnerability in config.php. Remote authenticated administrators can modify variables in config.php, potentially enabling arbitrary PHP code execution. This is described as a vulnerability in Skate Board 0.9 related to config.p...
CVE-2006-0811
Skate Board 0.9 contains a Cross-site scripting (XSS) vulnerability in reguser.php. The issue arises from unsanitized input in the registration form, allowing remote attackers to inject arbitrary web script or HTML via unspecified parameters. Connected sources corroborate XSS in reguser.php (e.g....
CVE-2006-0809
The CVE-2006-0809 issue affects Skate Board 0.9. Vulnerable components are includes/root/sendpass.php and includes/root/login.php/logged.php; the adversary can exploit via input fields (POST: usern, passwd) and the cookie sf_cookie, as well as related server-side usage of these values in SQL quer...