25 matches found
EUVD-2006-3731
Malware in sbrugna...
EUVD-2007-4873
Malware in sbrugna...
EUVD-2007-2264
Malware in sbrugna...
EUVD-2007-2263
Malware in sbrugna...
EUVD-2006-6434
Malware in sbrugna...
Sql injection
Multiple SQL injection vulnerabilities in SWSoft Plesk 7.6.1, 8.1.0, 8.1.1, and 8.2.0 for Windows allow remote attackers to execute arbitrary SQL commands via a PLESKSESSID cookie to 1 login.php3 or 2 auth.php3...
CVE-2007-4892
Multiple SQL injection vulnerabilities in SWSoft Plesk 7.6.1, 8.1.0, 8.1.1, and 8.2.0 for Windows allow remote attackers to execute arbitrary SQL commands via a PLESKSESSID cookie to 1 login.php3 or 2 auth.php3...
CVE-2007-4892
Multiple SQL injection vulnerabilities in SWSoft Plesk 7.6.1, 8.1.0, 8.1.1, and 8.2.0 for Windows allow remote attackers to execute arbitrary SQL commands via a PLESKSESSID cookie to 1 login.php3 or 2 auth.php3...
CVE-2007-4892
CVE-2007-4892 describes multiple SQL injection vulnerabilities in SWSoft Plesk versions 7.6.1, 8.1.0, 8.1.1, and 8.2.0 for Windows. The underlying issue is SQL injection via the PLESKSESSID cookie, exploitable through (1) login.php3 and (2) auth.php3, allowing remote attackers to execute arbitrar...
RE: ScanAlert Security Advisory
HackerSafe Labs - Security Advisory http://www.hackersafelabs.com SWsoft Plesk for Windows - SQL Injection Vulnerability Date: 9-11-07 Vendor: www.swsoft.com Package: Plesk for Windows Versions: v7.6.1, v8.1.0, v8.1.1, v8.2.0 Vendor Demo: https://plesk8.1win.demo.swsoft.com:8443/login.php3 Credit...
hackersafe-plesk.txt
HackerSafe Labs - Security Advisory http://www.hackersafelabs.com SWsoft Plesk for Windows - SQL Injection Vulnerability Date: 9-11-07 Vendor: www.swsoft.com Package: Plesk for Windows Versions: v7.6.1, v8.1.0, v8.1.1, v8.2.0 Vendor Demo: https://plesk8.1win.demo.swsoft.com:8443/login.php3 Credit...
CVE-2007-2268
Multiple directory traversal vulnerabilities in SWsoft Plesk for Windows 7.6.1, 8.1.0, and 8.1.1 allow remote attackers to read arbitrary files via a .. dot dot in the localeid parameter to 1 login.php3 or 2 loginup.php3...
Directory traversal
Multiple directory traversal vulnerabilities in SWsoft Plesk for Windows 7.6.1, 8.1.0, and 8.1.1 allow remote attackers to read arbitrary files via a .. dot dot in the localeid parameter to 1 login.php3 or 2 loginup.php3...
Directory traversal
Directory traversal vulnerability in top.php3 in SWsoft Plesk for Windows 8.1 and 8.1.1 allows remote attackers to read arbitrary files via a .. dot dot in the localeid parameter...
CVE-2007-2269
Directory traversal vulnerability in top.php3 in SWsoft Plesk for Windows 8.1 and 8.1.1 allows remote attackers to read arbitrary files via a .. dot dot in the localeid parameter...
CVE-2007-2268
Multiple directory traversal vulnerabilities in SWsoft Plesk for Windows 7.6.1, 8.1.0, and 8.1.1 allow remote attackers to read arbitrary files via a .. dot dot in the localeid parameter to 1 login.php3 or 2 loginup.php3...
CVE-2007-2268
CVE-2007-2268 : Multiple directory traversal vulnerabilities affect SWsoft Plesk for Windows (versions 7.6.1, 8.1.0, 8.1.1). The issue arises from unsafely handling the locale_id parameter in login.php3, login_up.php3 (and top.php3 per NASL) which allows an unauthenticated attacker to read arbitr...
CVE-2007-2269
CVE-2007-2269 affects SWsoft Plesk for Windows versions 8.1 and 8.1.1. It is a directory traversal vulnerability in top.php3 that allows remote attackers to read arbitrary files by supplying .. in the locale_id parameter. Exploitation details, affected versions beyond the listed ones, and remedia...
CVE-2007-2269
Directory traversal vulnerability in top.php3 in SWsoft Plesk for Windows 8.1 and 8.1.1 allows remote attackers to read arbitrary files via a .. dot dot in the localeid parameter...
CVE-2006-6451
Multiple cross-site scripting XSS vulnerabilities in SWsoft Plesk 8.0.1 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to 1 getpassword.php or 2 loginup.php3...