EUVD-2006-3827

Malware in sbrugna...

EUVD-2006-0987

Malware in sbrugna...

EJ3 TOPo 2.2.178 Inc_header.PHP Cross-Site Scripting Vulnerability

No description provided by source...

CVE-2006-3833

index.php in EJ3 TOPo 2.2.178 allows remote attackers to overwrite existing entries and establish new passwords for the overwritten entries via a URL with a modified entry ID...

CVE-2006-3833

This CVE affects EJ3 TOPo 2.2.178 and concerns index.php handling in EJ3 TOPo where a modified entry ID in a URL allows remote attackers to overwrite existing entries and create new passwords for those entries. Root cause appears to be improper handling of entry IDs in the web interface, enabling...

CVE-2006-3834

EJ3 TOPo 2.2.178 includes the password in cleartext in the ID field to index.php, which allows context-dependent attackers to obtain entry passwords via log files, referrers, or other vectors...

CVE-2006-0984

Cross-site scripting XSS vulnerability in incheader.php in EJ3 TOPo 2.2.178 allows remote attackers to inject arbitrary web script or HTML via the gTopNombre parameter...

CVE-2006-0984

CVE-2006-0984 affects EJ3 TOPo version 2.2.178, where the script inc_header.php is vulnerable to cross-site scripting (XSS). The underlying issue is that the gTopNombre parameter is used in a way that allows remote attackers to inject arbitrary web script or HTML. The NVD entry lists an overall C...

CVE-2005-1716

TOPo 2.2 2.2.178 stores data files in the data directory under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information such as client IP addresses...

CVE-2005-1716

TOPo 2.2 2.2.178 stores data files in the data directory under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information such as client IP addresses...