21 matches found
EUVD-2007-0640
Malware in sbrugna...
EUVD-2011-5038
Malware in sbrugna...
EUVD-2011-5037
Malware in sbrugna...
tForum b0.9 Member.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/14303/info tForum is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script...
CVE-2011-5138
Cross-site scripting XSS vulnerability in member.php in tForum b0.915 allows remote attackers to inject arbitrary web script or HTML via the username parameter in a viewprofile action...
CVE-2011-5137
Multiple SQL injection vulnerabilities in tForum b0.915 allow remote attackers to execute arbitrary SQL commands via the 1 TopicID parameter to viewtopic.php, the 2 BoardID parameter to viewboard.php, or 3 CatID parameter to viewcat.php...
Sql injection
Multiple SQL injection vulnerabilities in tForum b0.915 allow remote attackers to execute arbitrary SQL commands via the 1 TopicID parameter to viewtopic.php, the 2 BoardID parameter to viewboard.php, or 3 CatID parameter to viewcat.php...
CVE-2011-5137
Multiple SQL injection vulnerabilities in tForum b0.915 allow remote attackers to execute arbitrary SQL commands via the 1 TopicID parameter to viewtopic.php, the 2 BoardID parameter to viewboard.php, or 3 CatID parameter to viewcat.php...
CVE-2011-5138
Cross-site scripting XSS vulnerability in member.php in tForum b0.915 allows remote attackers to inject arbitrary web script or HTML via the username parameter in a viewprofile action...
Cross site scripting
Cross-site scripting XSS vulnerability in member.php in tForum b0.915 allows remote attackers to inject arbitrary web script or HTML via the username parameter in a viewprofile action...
CVE-2011-5138
The CVE‑2011‑5138 entry describes a cross‑site scripting (XSS) vulnerability in tForum b0.915, specifically in member.php under the viewprofile action where the username parameter can inject arbitrary web script/HTML. Affected component: tForum (version b0.915); vulnerability type: XSS. Root caus...
CVE-2011-5138
Cross-site scripting XSS vulnerability in member.php in tForum b0.915 allows remote attackers to inject arbitrary web script or HTML via the username parameter in a viewprofile action...
CVE-2011-5137
CVE-2011-5137 relates to multiple SQL injection vulnerabilities in tForum b0.915. The affected components are the scripts viewtopic.php, viewboard.php, and viewcat.php, which accept the TopicID, BoardID, and CatID parameters respectively. The underlying issue is improper sanitization leading to S...
tForum b0.915 Cross Site Scripting / SQL Injection
Exploit Title: tForum b0.915 Vulnerabilities Dork: intext:"powered by tForum b0.915" Author: snup Contact: [email protected] SQL Injection: DORK: inurl:"viewtopic.php?TopicID=" intext:"powered by tForum b0.915" inurl:"viewboard.php?BoardID=" intext:"powered by tForum b0.915"...
tForum b0.915 Vulnerabilities
Exploit for php platform in category web applications Exploit Title: tForum b0.915 Vulnerabilities Dork: intext:"powered by tForum b0.915" Author: snup Contact: email protected SQL Injection: DORK: inurl:"viewtopic.php?TopicID=" intext:"powered by tForum b0.915" inurl:"viewboard.php?BoardID="...
Sql injection
SQL injection vulnerability in tForum 2.00 in the Raymond BERTHOU script collection aka RBL - ASP allows remote attackers to execute arbitrary SQL commands via the 1 id and 2 pass to userconfirm.asp...
CVE-2007-0642
SQL injection vulnerability in tForum 2.00 in the Raymond BERTHOU script collection aka RBL - ASP allows remote attackers to execute arbitrary SQL commands via the 1 id and 2 pass to userconfirm.asp...
CVE-2007-0642
SQL injection vulnerability in tForum 2.00 in the Raymond BERTHOU script collection aka RBL - ASP allows remote attackers to execute arbitrary SQL commands via the 1 id and 2 pass to userconfirm.asp...
CVE-2007-0642
CVE-2007-0642 affects tForum 2.00 in the Raymond BERTHOU script collection (RBL - ASP). The vulnerability is an SQL injection in user_confirm.asp that allows remote attackers to execute arbitrary SQL commands via the (1) id and (2) pass parameters. Impact is partial confidentiality, integrity, an...
tForum b0.9 - member.php Cross-Site Scripting
tForum b0.9 - member.php Cross-Site Scripting source: https://www.securityfocus.com/bid/14303/info tForum is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...