18 matches found
EUVD-2006-4616
Malware in sbrugna...
EUVD-2005-4236
Malware in sbrugna...
EUVD-2005-4235
Malware in sbrugna...
VCD-db 0.9x search.php by Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/15840/info VCD-db is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities coul...
VCD-db 0.9x Search Module batch Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/15840/info VCD-db is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities coul...
CVE-2006-4628
Cross-site scripting XSS vulnerability in VCD-db before 0.983 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors when handling comments...
CVE-2006-4628
The CVE-2006-4628 entry documents a Cross-site scripting (XSS) vulnerability in VCD-db prior to version 0.983. The flaw allows remote attackers to inject arbitrary web script or HTML when handling comments. The exact vectors and affected components are not detailed beyond the comments handling as...
CVE-2006-4628
Cross-site scripting XSS vulnerability in VCD-db before 0.983 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors when handling comments...
[SA21781] VCD-db Comments Script Insertion Vulnerability
---------------------------------------------------------------------- Want to work within IT-Security? Secunia is expanding its team of highly skilled security experts. We will help with relocation and obtaining a work permit. Currently the following type of positions are available:...
CVE-2005-4240
SQL injection vulnerability in search.php in VCD-db 0.98 and earlier allows remote attackers to execute arbitrary SQL commands via the by parameter...
CVE-2005-4241
Cross-site scripting XSS vulnerability in the category page in VCD-db 0.98 and earlier allows remote attackers to inject arbitrary web script or HTML via the batch parameter...
CVE-2005-4241
The CVE-2005-4241 issue affects VCD-db 0.98 and earlier, with a Cross-site Scripting (XSS) vulnerability on the category page exploited via the batch parameter. Remote attackers could inject arbitrary script/HTML. This entry is supported by multiple sources noting XSS in VCD-db and the affected v...
CVE-2005-4241
Cross-site scripting XSS vulnerability in the category page in VCD-db 0.98 and earlier allows remote attackers to inject arbitrary web script or HTML via the batch parameter...
CVE-2005-4240
SQL injection vulnerability in search.php in VCD-db 0.98 and earlier allows remote attackers to execute arbitrary SQL commands via the by parameter...
CVE-2005-4240
Vulnerability details (CVE-2005-4240): Affected software is VCD-db 0.98 and earlier. The issue is an SQL injection in search.php via the by parameter, allowing remote attackers to execute arbitrary SQL commands. Impact is stated as partial confidentiality/integrity/availability (per CVSS), with n...
VCD-db vuln.
VCD-db vuln. Vuln. dicovered by : r0t Date: 13 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/vcd-db-vuln.html vendor: http://vcddb.konni.com/ affected version:V.0.98 and prior Product Description: VCD-db is a Free web based software that lets you manage your DVD/VCD/CDs collectio...
VCD-db 0.9x Search Module - batch Cross-Site Scripting
VCD-db 0.9x Search Module - batch Cross-Site Scripting source: https://www.securityfocus.com/bid/15840/info VCD-db is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these...
VCD-db 0.9x Search Module - 'batch' Cross-Site Scripting
source: https://www.securityfocus.com/bid/15840/info VCD-db is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities could result in a compromise of the...