11 matches found
EUVD-2006-4467
Malware in sbrugna...
EUVD-2006-4465
Malware in sbrugna...
EUVD-2006-4466
Malware in sbrugna...
CVE-2006-4477
Multiple PHP remote file inclusion vulnerabilities in Visual Shapers ezContents 2.0.3 allow remote attackers to execute arbitrary PHP code via an empty GLOBALSrootdp parameter and an ftps URL in the 1 GLOBALSadminhome parameter in a diary/eventlist.php, b gallery/gallerysummary.php, c...
CVE-2006-4478
SQL injection vulnerability in headeruserdata.php in Visual Shapers ezContents 2.0.3 allows remote attackers to execute arbitrary SQL commands via the groupname parameter...
CVE-2006-4479
Cross-site scripting XSS vulnerability in loginreq2.php in Visual Shapers ezContents 2.0.3 allows remote attackers to inject arbitrary web script or HTML via the subgroupname parameter...
CVE-2006-4477
Multiple PHP remote file inclusion vulnerabilities in Visual Shapers ezContents 2.0.3 allow remote attackers to execute arbitrary PHP code via an empty GLOBALSrootdp parameter and an ftps URL in the 1 GLOBALSadminhome parameter in a diary/eventlist.php, b gallery/gallerysummary.php, c...
CVE-2006-4478
SQL injection vulnerability in headeruserdata.php in Visual Shapers ezContents 2.0.3 allows remote attackers to execute arbitrary SQL commands via the groupname parameter...
CVE-2006-4478
CVE-2006-4478 describes an SQL injection in Visual Shapers ezContents 2.0.3, affecting headeruserdata.php via the groupname parameter. The underlying issue permits remote attackers to inject arbitrary SQL commands. Documented impact indicates potential data exposure, modification, or other SQL-le...
CVE-2006-4479
CVE-2006-4479: Affected software is Visual Shapers ezContents 2.0.3; vulnerability in loginreq2.php allows cross-site scripting via the subgroupname parameter. Impact: remote attackers can inject arbitrary script/HTML. The connected documents do not provide exploit details or a specific remediati...
CVE-2006-4477
CVE-2006-4477 involves multiple PHP remote file inclusion vulnerabilities in Visual Shapers ezContents 2.0.3. The issue allows remote attackers to execute arbitrary PHP code by supplying an empty GLOBALS[rootdp] or a URL in the GLOBALS[admin_home] parameter (across files: diary/event_list.php, ga...