12 matches found
EUVD-2011-1063
Malware in sbrugna...
Wordpress Plugin Forum Server 1.6.5 - SQL Injection Vulnerability
No description provided by source. Vulnerability ID: HTB22851 Reference: http://www.htbridge.ch/advisory/sqlinjectioninwpforumserverwordpre ssplugin1.html Product: WP Forum Server wordpress plugin Vendor: VastHTML Vulnerable Version: 1.6.5 Vendor Notification: 10 February 2011 Vulnerability Type:...
WP Forum Server 1.6.5 Wordpress Plugin SQL Injection Vulnerability
Exploit for php platform in category web applications Product: WP Forum Server wordpress plugin Vendor: VastHTML Vulnerable Version: 1.6.5 Vendor Notification: 10 February 2011 Vulnerability Type: SQL Injection Risk level: High Credit: High-Tech Bridge SA - Ethical Hacking & Penetration Testing...
WP Forum Server 1.6.5 SQL Injection
Vulnerability ID: HTB22850 Reference: http://www.htbridge.ch/advisory/sqlinjectioninwpforumserverwordpressplugin.html Product: WP Forum Server wordpress plugin Vendor: VastHTML http://lucidcrew.com/ Vulnerable Version: 1.6.5 Vendor Notification: 10 February 2011 Vulnerability Type: SQL Injection...
WordPress Plugin Forum Server 1.6.5 - SQL Injection
WordPress Plugin Forum Server 1.6.5 - SQL Injection Vulnerability ID: HTB22851 Reference: http://www.htbridge.ch/advisory/sqlinjectioninwpforumserverwordpre ssplugin1.html Product: WP Forum Server wordpress plugin Vendor: VastHTML Vulnerable Version: 1.6.5 Vendor Notification: 10 February 2011...
WordPress Plugin Forum Server 1.6.5 - SQL Injection
Vulnerability ID: HTB22851 Reference: http://www.htbridge.ch/advisory/sqlinjectioninwpforumserverwordpre ssplugin1.html Product: WP Forum Server wordpress plugin Vendor: VastHTML Vulnerable Version: 1.6.5 Vendor Notification: 10 February 2011 Vulnerability Type: SQL Injection Risk level: High...
CVE-2011-1047
Multiple SQL injection vulnerabilities in VastHTML Forum Server aka ForumPress plugin 1.6.1 and 1.6.5 for WordPress allow remote attackers to execute arbitrary SQL commands via the 1 searchmax parameter in a search action to index.php, which is not properly handled by wpf.class.php, 2 id paramete...
Sql injection
Multiple SQL injection vulnerabilities in VastHTML Forum Server aka ForumPress plugin 1.6.1 and 1.6.5 for WordPress allow remote attackers to execute arbitrary SQL commands via the 1 searchmax parameter in a search action to index.php, which is not properly handled by wpf.class.php, 2 id paramete...
CVE-2011-1047
Multiple SQL injection vulnerabilities in VastHTML Forum Server aka ForumPress plugin 1.6.1 and 1.6.5 for WordPress allow remote attackers to execute arbitrary SQL commands via the 1 searchmax parameter in a search action to index.php, which is not properly handled by wpf.class.php, 2 id paramete...
CVE-2011-1047
CVE-2011-1047 concerns multiple SQL injection vulnerabilities in the VastHTML Forum Server (aka ForumPress) WordPress plugin, specifically versions 1.6.1 and 1.6.5. The issues arise from improper input sanitization in three vectors: (1) the search_max parameter in index.php (wpf.class.php), (2) t...
WP Forum Server 1.6.5 SQL Injection
================================= Vulnerability ID: HTB22852 Reference: http://www.htbridge.ch/advisory/sqlinjectioninwpforumserverwordpressplugin2.html Product: WP Forum Server wordpress plugin Vendor: VastHTML http://lucidcrew.com/ Vulnerable Version: 1.6.5 Vendor Notification: Vulnerability...
HTB22851: SQL Injection in WP Forum Server wordpress plugin
Vulnerability ID: HTB22851 Reference: http://www.htbridge.ch/advisory/sqlinjectioninwpforumserverwordpressplugin1.html Product: WP Forum Server wordpress plugin Vendor: VastHTML http://lucidcrew.com/ Vulnerable Version: 1.6.5 Vendor Notification: Vulnerability Type: SQL Injection Risk level: High...