CVE-2005-2587

PHPTB Topic Boards 2.0 is affected by a SQL injection in emailvalidate.php that allows remote attackers to execute arbitrary SQL commands via the mid parameter. Root cause is improper input handling in emailvalidate.php leading to SQL manipulation. Documented impact includes potential exposure or...

CVE-2005-2587

SQL injection vulnerability in emailvalidate.php in PHPTB Topic Boards 2.0 allows remote attackers to execute arbitrary SQL commands via the mid parameter...

SQL in PHPTB Topic Boards 2.0

Class: Input Validation Error CVE: CVE-MAP-NOMATCH Remote: Yes Local: Yes Credit: aLMaSTeR HaCKeR almasterathotmaildotcom Vulnerable: Powered by PHPTB Topic Boards 2.0 ITHINK WORK IN ALL VERSION info PHPTB BOARD IS VERY NICE BOARD U CAN FIND SOURCE OF FORUM IN http://www.phptb.com discussion SQL ...

CVE-2002-1808

Cross-site scripting XSS vulnerability in Meunity Community System 1.1 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag when creating a topic...

phpBB 2.0.* Discloses Path

phpBB 2.0. Раскрытие пути: /modcp.php?t=несуществующаятема...

woltlabXSS231.txt

SePro Bugtraq WBB - WoltLab Burning Board = 2.3.1 - XSS Vulnerability 22.04.05 Vendor: WoltLab URL: http://www.woltlab.de/ Version: = 2.3.1 Type: XSS Discovered by deluxe89 Description: -------------------------------- The WoltLab Burning Board is a high customisable forum software for every kind...

CVE-2005-0871

calendarscheduler.php in Topic Calendar 1.0.1 module for phpBB, when running on a Microsoft IIS server, allows remote attackers to obtain sensitive information via invalid parameters, which reveal the path in an error message...

BakBone NetVault 7.1 - Local Privilege Escalation

// ===== Start UnhideNetVaultServiceWindow.c ====== include include int main void HWND hWnd; char szWindowName = "C:\Program Files\BakBone Software\NetVault\bin\nvstatsmngr.exe"; printf "Finding window %s\n", szWindowName ; hWnd = FindWindow NULL, szWindowName ; if hWnd == NULL printf "ERROR!...

CVE-2005-0871

calendarscheduler.php in Topic Calendar 1.0.1 module for phpBB, when running on a Microsoft IIS server, allows remote attackers to obtain sensitive information via invalid parameters, which reveal the path in an error message...

CVE-2005-0872

Cross-site scripting XSS vulnerability in calendarscheduler.php in the Topic Calendar 1.0.1 module for phpBB allows remote attackers to inject arbitrary web script or HTML via the start parameter...

CVE-2005-0872

Topic Calendar 1.0.1 for phpBB is affected. The vulnerability is a cross-site scripting (XSS) flaw in calendar_scheduler.php that allows remote attackers to inject arbitrary web script or HTML through the start parameter. This is documented in multiple sources (OpenVAS entry “Topic Calendar XSS” ...

CVE-2005-0871

The CVE-2005-0871 entry describes a vulnerability in the Topic Calendar 1.0.1 module for phpBB. When run on Microsoft IIS, remote attackers can obtain sensitive information by supplying invalid parameters, which cause error messages to reveal the server path. The affected component is calendar_sc...

codebug-8.txt

CODEBUG Labs Advisory 8 Title: Multiple vulnerabilities in Topic Calendar 1.0.1 for phpBB Author: Alberto Trivero English Version: Alberto Trivero Product: Topic Calendar 1.0.1 Type: Multiple Vulnerabilities Web: http://www.codebug.org/ -- Software Page www.phpbb.com/phpBB/viewtopic.php?t=150857...

Multiple vulnerabilities in Topic Calendar 1.0.1 for phpBB

CODEBUG Labs Advisory 8 Title: Multiple vulnerabilities in Topic Calendar 1.0.1 for phpBB Author: Alberto Trivero English Version: Alberto Trivero Product: Topic Calendar 1.0.1 Type: Multiple Vulnerabilities Web: http://www.codebug.org/ -- Software Page www.phpbb.com/phpBB/viewtopic.php?t=150857...

CVE-2004-1624

Carbon Copy 6.0.5257 does not drop system privileges when opening external programs through the help topic interface, which allows local users to gain privileges via 1 the help topic interface in CCW32.exe, which launches Notepad, or 2 the help button in the Carbon Copy Scheduler CCSched.exe...

phpbb 2.0.11 bug

PHPBB 2.0.11 is vulnable to a path disclosure.All you need is a valid topic and for highlight put .Here is a sample: http://www.site.com/forum/viewtopic.php?t=2&highlight= Here is the messege you will get: Warning: Compilation failed: missing at offset 7 in c:appservwwwforumviewtopic.php1109 :...

CVE-2004-2733

Web Wiz Forums 7.7a uses invalid logic to determine user privileges, which allows remote attackers to 1 block arbitrary IP addresses via popupipblocking.asp or 2 modify topics via popuptopicadmin.asp...

CVE-2004-1624

Carbon Copy 6.0.5257 does not drop system privileges when opening external programs through the help topic interface, which allows local users to gain privileges via 1 the help topic interface in CCW32.exe, which launches Notepad, or 2 the help button in the Carbon Copy Scheduler CCSched.exe...

Adam Ismay Print Topic Mod 1.0 - SQL Injection

Adam Ismay Print Topic Mod 1.0 - SQL Injection source: https://www.securityfocus.com/bid/10757/info Print Topic Mod is reportedly affected by a remote SQL injection vulnerability in the 'printview.php' script. This issue is due to a failure of the application to properly sanitize user-supplied UR...

Adam Ismay Print Topic Mod 1.0 - SQL Injection

source: https://www.securityfocus.com/bid/10757/info Print Topic Mod is reportedly affected by a remote SQL injection vulnerability in the 'printview.php' script. This issue is due to a failure of the application to properly sanitize user-supplied URI parameter input before using it in an SQL...