15 matches found
EUVD-2007-1626
Malware in sbrugna...
EUVD-2007-5298
Malware in sbrugna...
CVE-2012-1297
Multiple cross-site request forgery CSRF vulnerabilities in main.php in Contao formerly TYPOlight 2.11.0 and earlier allow remote attackers to hijack the authentication of administrators for requests that 1 delete users via a delete action in the user module, 2 delete news via a delete action in...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in main.php in Contao formerly TYPOlight 2.11.0 and earlier allow remote attackers to hijack the authentication of administrators for requests that 1 delete users via a delete action in the user module, 2 delete news via a delete action in...
CVE-2012-1297
CVE-2012-1297 affects Contao (formerly TYPOlight) 2.11.0 and earlier, via multiple CSRF vulnerabilities in main.php that can hijack administrator authentication for actions that delete users, news, or newsletters. Root cause and exact exploit details are not elaborated in the provided documents. ...
ContaoCMS (aka TYPOlight) <= 2.11 CSRF (delete admin/delete articles)-vulnerability warning-the black bar safety net
Title: ContaoCMS aka TYPOlight = 2.11 CSRF Delete Admin - Delete Article Author: Ivano Binetti http://ivanobinetti.com Download address: http://www.contao.org/en/download.html The development of this website: http://www.contao.org Affects versions: 2.11.0 latestand earlier Test platform: Debian...
Information disclosure
Unspecified vulnerability in preview.php in TYPOlight webCMS 2.4.6 allows remote attackers to download arbitrary files via the src parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2007-5318
Unspecified vulnerability in preview.php in TYPOlight webCMS 2.4.6 allows remote attackers to download arbitrary files via the src parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2007-5318
TYPOlight webCMS 2.4.6 is affected by an unspecified vulnerability in preview.php that allows remote attackers to download arbitrary files via the src parameter. This entry reports a file-download capability without details on root cause or affected environments beyond TYPOlight 2.4.6, and does n...
CVE-2007-5318
Unspecified vulnerability in preview.php in TYPOlight webCMS 2.4.6 allows remote attackers to download arbitrary files via the src parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
TYPOlight < 2.2.5 Unspecified Vulnerability
The remote host is running TYPOlight webCMS, a content management system with an emphasis on accessibility and written in PHP. The version of TYPOlight installed on the remote host is affected by what the project calls a 'major security hole', although no specific details are available at this...
Design/Logic Flaw
Unspecified vulnerability in TYPOlight webCMS before 2.2 Build 5 has unknown impact and attack vectors related to a "major security hole."...
CVE-2007-1632
Unspecified vulnerability in TYPOlight webCMS before 2.2 Build 5 has unknown impact and attack vectors related to a "major security hole."...
CVE-2007-1632
Unspecified vulnerability in TYPOlight webCMS before 2.2 Build 5 has unknown impact and attack vectors related to a "major security hole."...
CVE-2007-1632
TYPOlight webCMS is affected by CVE-2007-1632 for versions before 2.2 Build 5. The connected Nessus entry describes an unspecified vulnerability in TYPOlight