21 matches found
EUVD-2006-1759
Malware in sbrugna...
EUVD-2007-6012
Malware in sbrugna...
EUVD-2006-1754
Malware in sbrugna...
CVE-2007-6042
PHP remote file inclusion vulnerability in fehler.inc.php in SWSoft Confixx Professional 3.2.1 allows remote attackers to execute arbitrary PHP code via a URL in an unspecified parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...
SWSoft Confixx 3.0.6/3.0.8/3.1.2 Index.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/17476/info Confixx is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow a...
Remote file inclusion
PHP remote file inclusion vulnerability in fehler.inc.php in SWSoft Confixx Professional 3.2.1 allows remote attackers to execute arbitrary PHP code via a URL in an unspecified parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...
CVE-2007-6042
PHP remote file inclusion vulnerability in fehler.inc.php in SWSoft Confixx Professional 3.2.1 allows remote attackers to execute arbitrary PHP code via a URL in an unspecified parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...
CVE-2007-6042
PHP remote file inclusion vulnerability in fehler.inc.php in SWSoft Confixx Professional 3.2.1 allows remote attackers to execute arbitrary PHP code via a URL in an unspecified parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...
CVE-2007-6042
The CVE-2007-6042 entry concerns SWSoft Confixx Professional 3.2.1, where a PHP remote file inclusion vulnerability exists in fehler.inc.php. An attacker can cause arbitrary PHP code execution by supplying a URL in an unspecified parameter, enabling potential remote control of affected systems. T...
SWSoft Confixx Fehler.Inc.PHP远程文件包含漏洞
SWSoft Confixx Fehler.Inc.PHP Remote File Include Vulnerability SWSoft Confixx是一款基于PHP的WEB应用程序。 SWSoft Confixx不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB权限执行任意PHP代码。 问题是由于'Fehler.Inc.PHP'脚本对用户提交的WEB参数缺少过滤,指定远程服务器上的任意文件作为包含参数,可导致以WEB权限执行任意PHP代码。 SWSoft Confixx Professional 3.2.1 目前没有详细解决方案提供:...
CVE-2007-4009
PHP remote file inclusion vulnerability in admin/businessinc/saveserver.php in SWSoft Confixx Pro 2.0.12 through 3.3.1 allows remote attackers to execute arbitrary PHP code via a URL in the thisdir parameter...
Remote file inclusion
PHP remote file inclusion vulnerability in admin/businessinc/saveserver.php in SWSoft Confixx Pro 2.0.12 through 3.3.1 allows remote attackers to execute arbitrary PHP code via a URL in the thisdir parameter...
PT-2007-5222 · Swsoft · Swsoft Confixx Pro
Name of the Vulnerable Software and Affected Versions: SWSoft Confixx Pro versions 2.0.12 through 3.3.1 Description: The issue allows remote attackers to execute arbitrary PHP code via a URL in the thisdir parameter in the admin/business inc/saveserver.php file. Recommendations: For SWSoft Confix...
CVE-2007-4009
PHP remote file inclusion vulnerability in admin/businessinc/saveserver.php in SWSoft Confixx Pro 2.0.12 through 3.3.1 allows remote attackers to execute arbitrary PHP code via a URL in the thisdir parameter...
CVE-2007-4009
CVE-2007-4009 affects SWSoft Confixx Pro 2.0.12–3.3.1. A remote file inclusion flaw in admin/business_inc/saveserver.php allows an attacker to supply a URL via the thisdir parameter to execute arbitrary PHP code. Exploitation details and patches are not described in the provided documents; relate...
Cross site scripting
Cross-site scripting XSS vulnerability in allgemeintransfer.php in SWSoft Confixx 3.1.2 allows remote attackers to inject arbitrary web script or HTML via the jahr parameter...
Sql injection
SQL injection vulnerability in index.php in SWSoft Confixx 3.0.6, 3.0.8, and 3.1.2 allows remote attackers to execute arbitrary SQL commands via the SID parameter...
CVE-2006-1754
CVE-2006-1754 affects SWSoft Confixx versions 3.0.6, 3.0.8, and 3.1.2. The vulnerability is a SQL injection in index.php that allows remote attackers to execute arbitrary SQL commands via the SID parameter. The connection documents confirm the affected product/version and the injection mechanism,...
CVE-2006-1754
SQL injection vulnerability in index.php in SWSoft Confixx 3.0.6, 3.0.8, and 3.1.2 allows remote attackers to execute arbitrary SQL commands via the SID parameter...
SWSoft Confixx 3.0.63.0.83.1.2 - index.php SQL Injection
SWSoft Confixx 3.0.63.0.83.1.2 - index.php SQL Injection source: https://www.securityfocus.com/bid/17476/info Confixx is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successfu...