EUVD-2008-2070

Malware in sbrugna...

EUVD-2008-2069

Malware in sbrugna...

CVE-2008-2072

Cross-site scripting XSS vulnerability in index.php in Virtual Design Studio vlbook 1.21 allows remote attackers to inject arbitrary web script or HTML via the l parameter, a different vector than CVE-2006-3260...

CVE-2008-2072

Cross-site scripting XSS vulnerability in index.php in Virtual Design Studio vlbook 1.21 allows remote attackers to inject arbitrary web script or HTML via the l parameter, a different vector than CVE-2006-3260...

CVE-2008-2073

Directory traversal vulnerability in include/global.inc.php in Virtual Design Studio vlbook 1.21 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the l parameter...

CVE-2008-2072

CVE-2008-2072 describes a Cross-site scripting (XSS) vulnerability in index.php of Virtual Design Studio vlbook 1.21, allowing remote attackers to inject arbitrary web script or HTML via the l parameter. The entry notes this is a different vector from CVE-2006-3260, and the affected component is ...

CVE-2008-2073

CVE-2008-2073 describes a directory traversal vulnerability in the file include/global.inc.php of Virtual Design Studio vlbook 1.21 . The underlying issue allows an attacker to supply a value for the parameter l containing “..” to cause the application to include and execute arbitrary local files...