73 matches found
EUVD-2005-3550
Malware in sbrugna...
EUVD-2005-4348
Malware in sbrugna...
EUVD-2006-4009
Malware in sbrugna...
EUVD-2005-3549
Malware in sbrugna...
EUVD-2005-4272
Malware in sbrugna...
EUVD-2006-2796
Malware in sbrugna...
EUVD-2005-4417
Malware in sbrugna...
CVE-2005-4422
Unrestricted file upload vulnerability in toendaCMS before 0.6.2 Stable allows remote authenticated administrators to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in data/images/albums...
ToendaCMS 0.7 Index.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/18178/info ToendaCMS is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary scri...
ToendaCMS 1.5.3 HTTP Get And Post Forms HTML Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/23453/info ToendaCMS is prone to an HTML-injection scripting vulnerability because the application fails to properly sanitize user-supplied input. Attacker-supplied HTML and script code would execute in the context of the...
ToendaCMS 0.x/1.0.x Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/19806/info ToendaCMS is prone a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote file containing malicious PH...
toendaCMS 0.6.1 Admin.PHP Directory Traversal Vulnerability
No description provided by source...
ToendaCMS 0.x/1.0.x TCMS_Administer Parameter Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/19626/info ToendaCMS is prone a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote file containing malicious PH...
toendaCMS <= 1.0.0 (FCKeditor) Remote File Upload Exploit
No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo ToendaCMS = 1.0.0 Shizouka stable 'FuCKeditor' remote commands execution\n; echo by rgod [email protected]\n; echo site: http://retrogod.altervista.org\n; echo dork: \toendaCMS is Free Software released under the GNU/G...
ToendaCMS 1.0.4 Media.PHP Directory Traversal Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20170/info toendaCMS is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting this issue may allow an attacker to access sensitive information that cou...
ToendaCMS 1.6.2 - setupindex.php?site Traversal Local File Inclusion
ToendaCMS 1.6.2 - setupindex.php?site Traversal Local File Inclusion source: https://www.securityfocus.com/bid/52350/info ToendaCMS is prone to a local file-include vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can...
ToendaCMS 1.6.2 - '/setup/index.php?site' Traversal Local File Inclusion
source: https://www.securityfocus.com/bid/52350/info ToendaCMS is prone to a local file-include vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit the local file-include vulnerability using directory-traversal...
CVE-2007-1872
Cross-site scripting XSS vulnerability in toendaCMS 1.5.3 allows remote attackers to inject arbitrary web script or HTML via the searchword parameter in a search id...
Cross site scripting
Cross-site scripting XSS vulnerability in toendaCMS 1.5.3 allows remote attackers to inject arbitrary web script or HTML via the searchword parameter in a search id...
CVE-2007-1872
Cross-site scripting XSS vulnerability in toendaCMS 1.5.3 allows remote attackers to inject arbitrary web script or HTML via the searchword parameter in a search id...