7 matches found
EUVD-2006-1564
Malware in sbrugna...
EUVD-2006-1562
Malware in sbrugna...
CVE-2006-1561
SQL injection vulnerability in index.php in vscripts aka Kuba Kunkiewicz VBook aka VBook 2.0 allows remote attackers to execute arbitrary SQL commands via the x parameter...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in index.php in vscripts aka Kuba Kunkiewicz VBook aka VBook 2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 autor, 2 www, 3 temat, and 4 tresc parameters...
CVE-2006-1561
SQL injection vulnerability in index.php in vscripts aka Kuba Kunkiewicz VBook aka VBook 2.0 allows remote attackers to execute arbitrary SQL commands via the x parameter...
CVE-2006-1563
Affected software/component: [V]Book (aka VBook) 2.0 by vscripts; vulnerable file: config.php. Root cause: Direct static code injection allows an attacker to insert arbitrary PHP code into config.php, which is subsequently included by other [V]Book scripts. Impact: Remote code execution leading t...
CVE-2006-1561
The CVE-2006-1561 issue affects the [V]Book (aka VBook) 2.0 software (vscripts) and is caused by improper sanitization in index.php, where the x parameter is used unsafely in SQL queries. This allows remote attackers to execute arbitrary SQL commands. The connected sources consistently describe S...