EUVD-2008-5541

Malware in sbrugna...

PHP Support Tickets 1.9 Cross Site Scripting

Google dork: "PHP Support Tickets v1.9" inurl:index.php?action= "PHP Support Tickets v1.9" by "Triangle Solutions Ltd" allows XSS attack at index.php and some implementations also has a bad uploaded files validation allowing to upload a js with a jpg extension that could be using for bypassing XS...

CVE-2008-5566

Cross-site scripting XSS vulnerability in index.php in Triangle Solutions PHP Multiple Newsletters 2.7 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in Triangle Solutions PHP Multiple Newsletters 2.7 allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...

CVE-2008-5566

CVE-2008-5566 describes a cross-site scripting (XSS) vulnerability in the PHP application Triangle Solutions PHP Multiple Newsletters 2.7 . The issue is in the file index.php and is triggered when user-supplied data is processed via PATH_INFO , allowing an attacker to inject arbitrary web script ...