42 matches found
EUVD-2007-1896
Malware in sbrugna...
EUVD-2007-3568
Malware in sbrugna...
EUVD-2010-4736
Malware in sbrugna...
EUVD-2007-1895
Malware in sbrugna...
CVE-2024-40624 Deserialization of untrusted data in torrentpier/torrentpier
TorrentPier is an open source BitTorrent Public/Private tracker engine, written in php. In torrentpier/library/includes/functions.php, gettracks uses the unsafe native PHP serialization format to deserialize user-controlled cookies. One can use phpggc and the chain Guzzle/FW1 to write PHP code to...
Dokeos 1.x forum/viewforum.php forum Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/26992/info Dokeos is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser ...
PHPNuke 6.0/6.5 Forum Module Viewforum.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7194/info It has been reported that an input validation error exists in the 'viewforum.php' script included with PHPNuke as part of the Forum module. Because of this, an attacker could send a malicious string through...
PNphpBB2 <= 1.2i - viewforum.php Remote SQL Injection Exploit
No description provided by source. / i PNphpBB2 viewforum.php SQL Injection Blind Password Hash Fishing Exploit i Vulnerable versions: PNphpBB2 = 1.2i current last version i Bug discovered by: Coloss i Exploit by: Coloss i Date: 03.07.2007 Notes - You need at least 2 posts in the forum. - Thanks ...
Blizard BB 1.7 SQL Injection Vulnerability
Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...
CVE-2010-4772
Cross-site scripting XSS vulnerability in blocks/lang.php in S-CMS 2.5 allows remote attackers to inject arbitrary web script or HTML via the id parameter to viewforum.php...
Sql injection
SQL injection vulnerability to viewforum.php in S-CMS 2.5 allows remote attackers to execute arbitrary SQL commands via the id parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in blocks/lang.php in S-CMS 2.5 allows remote attackers to inject arbitrary web script or HTML via the id parameter to viewforum.php...
CVE-2010-4772
Cross-site scripting XSS vulnerability in blocks/lang.php in S-CMS 2.5 allows remote attackers to inject arbitrary web script or HTML via the id parameter to viewforum.php...
CVE-2010-4771
CVE-2010-4771 affects S-CMS 2.5, due to an SQL injection in viewforum.php where the id parameter enables remote attackers to execute arbitrary SQL commands. Reported impact aligns with a base score of 7.5 (HIGH) and network access with low attack complexity. The provided connected documents confi...
Sql injection
Multiple SQL injection vulnerabilities in CelerBB 0.0.2, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the id parameter to 1 viewforum.php and 2 viewtopic.php...
CVE-2009-0851
Multiple SQL injection vulnerabilities in CelerBB 0.0.2, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the id parameter to 1 viewforum.php and 2 viewtopic.php...
celerbb 0.0.2 - Multiple Vulnerabilities
Salvatore "drosophila" Fresta + Application: CelerBB + Version: 0.0.2 + Website: http://celerbb.sourceforge.net/ + Bugs: A Multiple SQL Injection B Information Disclosure C Authenticaion Bypass + Exploitation: Remote + Date: 05 Mar 2009 + Discovered by: Salvatore "drosophila" Fresta + Author:...
CVE-2008-2965
Cross-site scripting XSS vulnerability in viewforum.php in JaxUltraBB JUBB 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the forum parameter...
CVE-2008-2965
CVE-2008-2965 is an XSS vulnerability in JaxUltraBB (JUBB) 2.0 and earlier, specifically in viewforum.php via the forum parameter. The issue allows remote attackers to inject arbitrary script/HTML. Affected component: viewforum.php in JUBB; underlying cause is improper handling/encoding of the fo...
CVE-2008-2965
Cross-site scripting XSS vulnerability in viewforum.php in JaxUltraBB JUBB 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the forum parameter...