12 matches found
EUVD-2005-3914
Malware in sbrugna...
phpBB3 SQL Injection
------------------------------------------------------------------ Name : phpBB3 SQL Injection ------------------------------------------------------------------ Date : 27.07.2012 ------------------------------------------------------------------ Site : www.phpbb.com...
Sql injection
SQL injection vulnerability in root/includes/primequickstyle.php in the Prime Quick Style addon before 1.2.3 for phpBB 3 allows remote authenticated users to execute arbitrary SQL commands via the primequickstyle parameter to ucp.php...
CVE-2009-3052
SQL injection vulnerability in root/includes/primequickstyle.php in the Prime Quick Style addon before 1.2.3 for phpBB 3 allows remote authenticated users to execute arbitrary SQL commands via the primequickstyle parameter to ucp.php...
phpBB3 addon prime_quick_style GetAdmin Vulnerability
No description provided by source. phpBB3 addon primequickstyle GetAdmin Exploit Vulnerability found and exploited by -SmoG- target file: primequickstyle.php vuln: POST parameter "primequickstyle" is injectable. source: http://www.phpbb.com/community/viewtopic.php?f=70&t=692625 HowTo: after login...
phpBB 'ucp.php' XSS Vulnerability
According to its version number, the remote version of phpbb is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. UPDATE March 13, 2009: The referenced BID is being retired because the issue cannot be exploited as described...
PBSite - PHP Bulletin Site | CMS ====> RFI
.-" "-. / | TiTaNiC | |, .-. .-. ,| | o/ o | |/ / | @ ^^ |IIIIII|/ @8@8|-IIIIII/-| / HaCkEr / @ script:PBSite - PHP Bulletin Site | CMS ==== RFI url:http://sourceforge.net/project/showfiles.php?groupid=88114 authot:titanichacker [email protected] contact: hack-teach.com & mohandko.com...
MyEvent1.6 (template.php) Remote File Inclusion Vulnerability
.-" "-. / | TiTaNiC | |, .-. .-. ,| | o/ o | |/ / | @ ^^ |IIIIII|/ @8@8|-IIIIII/-| / HaCkEr / @ script:PBSite - PHP Bulletin Site | CMS ==== RFI url:http://sourceforge.net/project/showfiles.php?groupid=88114 authot:titanichacker [email protected] contact: hack-teach.com & mohandko.com...
CVE-2005-3919
Cross-site scripting XSS vulnerability in PBLang 4.65 allows remote attackers to inject arbitrary web script or HTML via multiple fields in 1 UCP.php and 2 SendPm.php...
CVE-2005-3919
PBLang 4.65 is affected by a cross-site scripting (XSS) vulnerability in UCP.php and SendPm.php. The issue allows remote attackers to inject arbitrary web script or HTML via multiple fields, enabling potential theft or manipulation of user data as described in CVE-2005-3919. No remediation detail...
PBLangXSS.txt
Who's got the magic stick? It sure as hell ain't 50 Cent. Excuse me for posting again within minutes but I did not properly check the other forms. In UCP.php, when editing your profile, in several fields you can inject code into the page, just as in the SendPm.php. EX: Input table: "URL"...
XSS in PBLang 4.65 Profile.php/UCP.php
Who's got the magic stick? It sure as hell ain't 50 Cent. Excuse me for posting again within minutes but I did not properly check the other forms. In UCP.php, when editing your profile, in several fields you can inject code into the page, just as in the SendPm.php. EX: Input table: "URL"...