5 matches found
EUVD-2008-0146
Malware in sbrugna...
Directory traversal
Directory traversal vulnerability in modules/hayoo/index.php in Tribisur 2.1, 2.0, and earlier, when magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary files via directory traversal sequences in the theme parameter. NOTE: some of these details are obtained from...
CVE-2010-0958
CVE-2010-0958 describes a directory traversal vulnerability in Tribisur (versions 2.1, 2.0 and earlier) affecting the file modules/hayoo/index.php when magic_quotes_gpc is disabled. Attackers could use directory traversal sequences in the theme parameter to include and execute arbitrary files. Th...
CVE-2008-0133
CVE-2008-0133 affects Tribisur 2.1 and earlier. The vulnerability is a SQL injection in two parameters: (1) id parameter to cat_main.php and (2) cat parameter to forum.php within a liste action, enabling remote attackers to execute arbitrary SQL commands. The NVD entry reports a CVSSv2 base score...
CVE-2008-0133
Multiple SQL injection vulnerabilities in Tribisur 2.1 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 id parameter to catmain.php and the 2 cat parameter to forum.php in a liste action...