10 matches found
EUVD-2006-2068
Malware in sbrugna...
MKPortal 1.1 - Multiple Input Validation Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/17651/info MKPortal is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly saniti...
vbulletin Exploit Tool Box
No description provided by source. include unistd.h include stdio.h include stdlib.h include sys/types.h include sys/socket.h include netinet/in.h include netdb.h include arpa/inet.h include errno.h include string.h include iostream using namespace std; string exploit; string answer; string...
CVE-2006-4271
PHP remote file inclusion vulnerability in install/upgrade301.php in Jelsoft vBulletin 3.5.4 allows remote attackers to execute arbitrary PHP code via a URL in the step parameter. NOTE: the vendor has disputed this vulnerability, saying "The default vBulletin requires authentication prior to the...
PT-2006-5081 · Vbulletin · Vbulletin
Name of the Vulnerable Software and Affected Versions: vBulletin version 3.5.4 Description: A remote file inclusion issue in the install/upgrade 301.php file allows remote attackers to execute arbitrary PHP code via a URL in the step parameter. However, the vendor has disputed this issue, stating...
Sql injection
SQL injection vulnerability in vbboardfunctions.php in MKPortal 1.1, as used with vBulletin 3.5.4 and earlier, allows remote attackers to execute arbitrary SQL commands via the userid parameter...
CVE-2006-2067
The CVE-2006-2067 entry documents a SQL injection vulnerability in MKPortal 1.1 when used with vBulletin 3.5.4 and earlier. The flaw affects vb_board_functions.php, where the userid parameter can be exploited by remote attackers to execute arbitrary SQL commands. No specific exploit details are p...
MKPortal 1.1 - Multiple Input Validation Vulnerabilities
MKPortal 1.1 - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/17651/info MKPortal is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the...
MKPortal 1.1 - Multiple Input Validation Vulnerabilities
source: https://www.securityfocus.com/bid/17651/info MKPortal is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful...
Remote file inclusion
PHP remote file inclusion vulnerability in VBulletin 3.5.1, 3.5.2, and 3.5.4 allows remote attackers to execute arbitrary code via a URL in the systempath parameter to 1 ImpExModule.php, 2 ImpExController.php, and 3 ImpExDisplay.php...