28 matches found
EUVD-2008-4339
Malware in sbrugna...
EUVD-2006-4271
Malware in sbrugna...
EUVD-2006-2519
Malware in sbrugna...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in pragmaMx 1.x before 1.12.2 allow remote attackers to inject arbitrary web script or HTML via the 1 name parameter to modules.php or 2 imgurl to includes/wysiwyg/spaw/editor/plugins/imgpopup/imgpopup.php...
SPAW Editor 2.0.8.1 - Local File Inclusion Vulnerability
No description provided by source. Exploit Title: local file include Date: Author: soorakh kos Software Link: http://sourceforge.net/projects/spaw/files/spaw-php/SPAW%20PHP%20v.2.0.8.1/spaw-php-2081-gpl.zip/download Version: SPAW Editor v.2 Thanks: kose roya , kose soosan , kose amam,kose dokhtar...
Spaw Editor 1.0 & 2.0 - Remote File Upload
No description provided by source. Tilte: Spaw Editor v1.0 & 2.0 Remote File Upload . Date....................: 20-05-2010 Author..................: Ma3sTr0-Dz Location ...............: Algeria Software ...............: Spaw Editor v1 & v2 Impact..................: Remote Site Software .............
SPAW Editor Local File Inclusion
Exploit Title: local file include Date: Author: soorakh kos Software Link: http://sourceforge.net/projects/spaw/files/spaw-php/SPAW%20PHP%20v.2.0.8.1/spaw-php-2081-gpl.zip/download Version: SPAW Editor v.2 Thanks: kose roya , kose soosan , kose amam,kose dokhtar amam ,and all jaghi iranian boys...
SPAW Editor 2.0.8.1 - Local File Inclusion
SPAW Editor 2.0.8.1 - Local File Inclusion Exploit Title: local file include Date: Author: soorakh kos Software Link: http://sourceforge.net/projects/spaw/files/spaw-php/SPAW%20PHP%20v.2.0.8.1/spaw-php-2081-gpl.zip/download Version: SPAW Editor v.2 Thanks: kose roya , kose soosan , kose amam,kose...
SPAW Editor 2.0.8.1 - Local File Inclusion
Exploit Title: local file include Date: Author: soorakh kos Software Link: http://sourceforge.net/projects/spaw/files/spaw-php/SPAW%20PHP%20v.2.0.8.1/spaw-php-2081-gpl.zip/download Version: SPAW Editor v.2 Thanks: kose roya , kose soosan , kose amam,kose dokhtar amam ,and all jaghi iranian boys...
Spaw Editor 1.0 / 2.0 Remote Shell Upload
Tilte: Spaw Editor v1.0 & 2.0 Remote File Upload . Date....................: 20-05-2010 Author..................: Ma3sTr0-Dz Location ...............: Algeria Software ...............: Spaw Editor v1 & v2 Impact..................: Remote Site Software ..........: http://www.spaweditor.com Sptnx...
Spaw Editor v1.0 & 2.0 Remote File Upload
Exploit for asp platform in category web applications ========================================= Spaw Editor v1.0 & 2.0 Remote File Upload ========================================= Date....................: 20-05-2010 Author..................: Ma3sTr0-Dz Location ...............: Algeria Software...
Spaw Editor 1.0/2.0 - Arbitrary File Upload
Tilte: Spaw Editor v1.0 & 2.0 Remote File Upload . Date....................: 20-05-2010 Author..................: Ma3sTr0-Dz Location ...............: Algeria Software ...............: Spaw Editor v1 & v2 Impact..................: Remote Site Software ..........: http://www.spaweditor.com Sptnx...
Spaw Editor 1.02.0 - Arbitrary File Upload
Spaw Editor 1.02.0 - Arbitrary File Upload Tilte: Spaw Editor v1.0 & 2.0 Remote File Upload . Date....................: 20-05-2010 Author..................: Ma3sTr0-Dz Location ...............: Algeria Software ...............: Spaw Editor v1 & v2 Impact..................: Remote Site Software...
CVE-2008-4358
Unspecified vulnerability in class/theme.class.php in SPAW Editor PHP Edition before 2.0.8.1 has unknown impact and attack vectors, probably related to directory traversal sequences in the theme name...
Directory traversal
Unspecified vulnerability in class/theme.class.php in SPAW Editor PHP Edition before 2.0.8.1 has unknown impact and attack vectors, probably related to directory traversal sequences in the theme name...
CVE-2008-4358
Unspecified vulnerability in class/theme.class.php in SPAW Editor PHP Edition before 2.0.8.1 has unknown impact and attack vectors, probably related to directory traversal sequences in the theme name...
CVE-2008-4358
Technical details for CVE-2008-4358 are not publicly available in the provided documents; monitor for updates.
spaw-rfi.txt
Remote IInclude File : SPAW Editor PHP Edition upgrade version 1.2.3 to 1.2.4 Discovered By : Hasadya Raed Contact Me : RaeDatBsdMaildotCom Download Script: http://heanet.dl.sourceforge.net/sourceforge/spaw/spaw-php-123-to-124.zip B.File :imglibrary.php : include $spawroot.'class/util.class.php';...
SPAW Editor PHP Edition
Remote IInclude File : SPAW Editor PHP Edition upgrade version 1.2.3 to 1.2.4 Discovered By : Hasadya Raed Contact Me : RaeDatBsdMaildotCom Download Script: http://heanet.dl.sourceforge.net/sourceforge/spaw/spaw-php-123-to-124.zip B.File :imglibrary.php : include $spawroot.'class/util.class.php';...
CVE-2006-5291
PHP remote file inclusion vulnerability in admin/includes/spaw/spawcontrol.class.php in Download-Engine 1.4.2 allows remote attackers to execute arbitrary PHP code via a URL in the spawroot parameter. NOTE: CVE analysis suggests that this issue is actually in a third party product, SPAW Editor PH...