EUVD-2005-4162

Malware in sbrugna...

CVE-2005-4167

Cross-site scripting XSS vulnerability in eFiction 1.0 and 1.1 allows remote attackers to inject arbitrary web script or HTML via the let parameter in a viewlist action to titles.php...

CVE-2005-4168

Multiple SQL injection vulnerabilities in eFiction 1.0, 1.1, and 2.0 allow remote attackers to execute arbitrary SQL commands via 1 the let parameter in a viewlist action to titles.php and 2 the username...

CVE-2005-4167

Cross-site scripting XSS vulnerability in eFiction 1.0 and 1.1 allows remote attackers to inject arbitrary web script or HTML via the let parameter in a viewlist action to titles.php...