112 matches found
EUVD-2014-4910
Malware in sbrugna...
EUVD-2002-2422
Malware in sbrugna...
EUVD-2008-7264
Malware in sbrugna...
EUVD-2008-4775
Malware in sbrugna...
EUVD-2009-0506
Malware in sbrugna...
EUVD-2014-4911
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2021-28940
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Because of a incorrect escaped exec command in MagpieRSS in 0.72 in the /extlib/Snoopy.class.inc file, it is possible to add a extra command to the curl binary...
CVE-2002-2444
Snoopy before 2.0.0 has a security hole in exec cURL...
Debian: Security Advisory (DLA-357-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE CVE-2005-3330
The httpsrequest function in Snoopy 1.2, as used in products such as 1 MagpieRSS, 2 WordPress, 3 Ampache, and 4 Jinzora, allows remote attackers to execute arbitrary commands via shell metacharacters in an HTTPS URL to an SSL protected web page, which is not properly handled by the fetch function...
SUSE CVE-2008-4796
The httpsrequest function Snoopy/Snoopy.class.php in Snoopy 1.2.3 and earlier, as used in 1 ampache, 2 libphp-snoopy, 3 mahara, 4 mediamate, 5 opendb, 6 pixelpost, and possibly other products, allows remote attackers to execute arbitrary commands via shell metacharacters in https URLs...
UBUNTU-CVE-2021-28940
Because of a incorrect escaped exec command in MagpieRSS in 0.72 in the /extlib/Snoopy.class.inc file, it is possible to add a extra command to the curl binary. This creates an issue on the /scripts/magpiedebug.php and /scripts/magpiesimple.php page that if you send a specific https url in the RS...
MagpieRSS 安全漏洞
A security vulnerability exists in MagpieRSS in 0.72, which originates from a command escape error in /extlib/Snoopy.class.inc and can be exploited by an attacker to execute arbitrary commands...
SOURCEFORGE MagpieRSS 代码问题漏洞
SOURCEFORGE MagpieRSS is SOURCEFORGE open source an application . Used to parse RSS 1.0 and earlier versions of a simple , practical PHP interface . MagpieRSS 0.72 has a security vulnerability where the curl command in /extlib/Snoopy.class.inc is not validated...
MagpieRSS 0.72 - 'url' Command Injection
Exploit Title: MagpieRSS 0.72 - 'url' Command Injection and Server Side Request Forgery Date: 24 March 2021 Exploit Author: bl4ckh4ck5 Vendor Homepage: http://magpierss.sourceforge.net/ Software Link:...
CVE-2002-2444
Snoopy before 2.0.0 has a security hole in exec cURL...
CVE-2002-2444
CVE-2002-2444 affects Snoopy prior to 2.0.0, with a security hole in exec cURL. The initial entry reports CVSS v2 base score 7.5 (HIGH) and CVSS v3.1 base score 9.8 (CRITICAL). No exploitation details or remediation are provided in the connected documents.
CVE-2002-2444
Snoopy before 2.0.0 has a security hole in exec cURL...
CVE-2002-2444
Snoopy before 2.0.0 has a security hole in exec cURL...
Command Injection
Snoopy library is vulnerable to command injection attacks. This allows remote attackers to execute arbitrary commands by manipulating Nagios HTTP headers which may leads to data modification...