25 matches found
EUVD-2009-4513
Malware in sbrugna...
ViArt CMS forum_topic_new.php forum_id Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/36003/info ViArt CMS is prone to multiple cross site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code could run in the context ...
viart cms/shop/helpdesk 3.3.2 - Remote File Inclusion Vulnerability
No description provided by source. Name : ViArt CMS 3.3.2 Remote File Include Download From : http://www.viart.com/downloads/viartcms-3.3.2.zip Found By : RoMaNcYxHaCkEr Home Page : Not Yet : ============================================================================ Vulne Code : Line 4 :...
ViArt CMS forum.php forum_id Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/36003/info ViArt CMS is prone to multiple cross site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code could run in the context ...
ViArt CMS 'admin_articles.php' Cross Site Scripting Vulnerability
ViArt CMS is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2009-4547
Multiple cross-site scripting XSS vulnerabilities in ViArt CMS 3.x allow remote attackers to inject arbitrary web script or HTML via the 1 categoryid parameter to forums.php, or the forumid parameter to 2 forum.php or 3 forumtopicnew.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in ViArt CMS 3.x allow remote attackers to inject arbitrary web script or HTML via the 1 categoryid parameter to forums.php, or the forumid parameter to 2 forum.php or 3 forumtopicnew.php...
CVE-2009-4547
CVE-2009-4547 documents multiple XSS vulnerabilities in ViArt CMS 3.x . The flaws let remote attackers inject arbitrary JavaScript/HTML via user-supplied parameters: (1) category_id to forums.php, or (2) forum_id to forum.php, or (3) forum_topic_new.php . The root cause is cross-site scripting in...
CVE-2009-4547
Multiple cross-site scripting XSS vulnerabilities in ViArt CMS 3.x allow remote attackers to inject arbitrary web script or HTML via the 1 categoryid parameter to forums.php, or the forumid parameter to 2 forum.php or 3 forumtopicnew.php...
ViArt CMS - 'forum.php?forum_id' Cross-Site Scripting
source: https://www.securityfocus.com/bid/36003/info ViArt CMS is prone to multiple cross site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code could run in the context of the affected site, potentially...
ViArt CMS - 'forum_topic_new.php?forum_id' Cross-Site Scripting
source: https://www.securityfocus.com/bid/36003/info ViArt CMS is prone to multiple cross site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code could run in the context of the affected site, potentially...
ViArt CMS - forum.php?forum_id Cross-Site Scripting
ViArt CMS - forum.php?forumid Cross-Site Scripting source: https://www.securityfocus.com/bid/36003/info ViArt CMS is prone to multiple cross site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code could ru...
ViArt CMS - 'forums.php?category_id' Cross-Site Scripting
source: https://www.securityfocus.com/bid/36003/info ViArt CMS is prone to multiple cross site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code could run in the context of the affected site, potentially...
ViArt CMS - forums.php?category_id Cross-Site Scripting
ViArt CMS - forums.php?categoryid Cross-Site Scripting source: https://www.securityfocus.com/bid/36003/info ViArt CMS is prone to multiple cross site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code coul...
ViArt CMS - forum_topic_new.php?forum_id Cross-Site Scripting
ViArt CMS - forumtopicnew.php?forumid Cross-Site Scripting source: https://www.securityfocus.com/bid/36003/info ViArt CMS is prone to multiple cross site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code...
ViArt CMS Cross Site Scripting
/ | | \ \ / / | | \ \ / / | |\ \ /\ / / | | | | | | \ V /| | | \ V V / | | || | || / ||| // ,|, | |/ | | | |/ / | ' \ | | / | | | | | | | |||,|| || || ViArt CMS Remote XSS Vulnerabilities Discovered By : Moudi Contact : Download : http://www.viart.com/cms/ Greetings : Mizoz, Zuka, str0ke,...
CVE-2007-6347
PHP remote file inclusion vulnerability in blocks/blocksitemap.php in ViArt 1 CMS 3.3.2, 2 HelpDesk 3.3.2, 3 Shop Evaluation 3.3.2, and 4 Shop Free 3.3.2 allows remote attackers to execute arbitrary PHP code via a URL in the rootfolderpath parameter. NOTE: some of these details are obtained from...
Remote file inclusion
PHP remote file inclusion vulnerability in blocks/blocksitemap.php in ViArt 1 CMS 3.3.2, 2 HelpDesk 3.3.2, 3 Shop Evaluation 3.3.2, and 4 Shop Free 3.3.2 allows remote attackers to execute arbitrary PHP code via a URL in the rootfolderpath parameter. NOTE: some of these details are obtained from...
CVE-2007-6347
PHP remote file inclusion vulnerability in blocks/blocksitemap.php in ViArt 1 CMS 3.3.2, 2 HelpDesk 3.3.2, 3 Shop Evaluation 3.3.2, and 4 Shop Free 3.3.2 allows remote attackers to execute arbitrary PHP code via a URL in the rootfolderpath parameter. NOTE: some of these details are obtained from...
CVE-2007-6347
CVE-2007-6347 describes a PHP remote file inclusion in blocks/block_site_map.php affecting ViArt CMS/HelpDesk/Shop Evaluation/Shop Free 3.3.2. The flaw allows an attacker to execute arbitrary PHP code by supplying a URL in the root_folder_path parameter. Documented impact is remote code execution...