Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2007-1600

Malware in sbrugna...

4.3CVSS6.4AI score0.02001EPSS
Exploits0References9
NVD
NVD
added 2007/03/22 11:19 p.m.19 views

CVE-2007-1604

Multiple unrestricted file upload vulnerabilities in w-Agora Web-Agora allow remote attackers to upload and execute arbitrary PHP code 1 via a forum message with an attached file, which is stored under forums/hello/hello/notes/ or 2 by using browseavatar.php to upload a file with a double...

7.5CVSS7.5AI score0.03004EPSS
Exploits1References7
NVD
NVD
added 2004/12/31 5:0 a.m.23 views

CVE-2004-1563

Multiple cross-site scripting XSS vulnerabilities in w-Agora 4.1.6a allow remote attackers to execute arbitrary web script or HTML via the 1 thread parameter to downloadthread.php, 2 loginuser parameter to login.php, or 3 userid parameter to forgotpassword.php...

4.3CVSS6.1AI score0.0201EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2004/10/01 12:0 a.m.36 views

w-Agora 4.1.6a Multiple Input Validation Vulnerabilities

The remote host is running w-agora, a web-based forum management software written in PHP. There are multiple input validation flaws in the remote version of this software : - There is a SQL injection vulnerability in the file 'redirurl.php' that could allow an attacker to execute arbitrary SQL...

7.5CVSS5.7AI score0.06053EPSS
Exploits4References5
Tenable Nessus
Tenable Nessus
added 2004/10/01 12:0 a.m.15 views

W-Agora Multiple Input Validation Vulnerabilities

Binary data 2339.prm...

7.5CVSS7.3AI score0.06053EPSS
Exploits4References5
exploitpack
exploitpack
added 2004/09/30 12:0 a.m.54 views

W-Agora 4.1.6 - a redir_url.php?key SQL Injection

W-Agora 4.1.6 - a redirurl.php?key SQL Injection source: https://www.securityfocus.com/bid/11283/info Multiple vulnerabilities are reported to affect the application. These issues arise due to insufficient sanitization of user-supplied data. A remote attacker may leverage these vulnerabilities to...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2004/09/30 12:0 a.m.14 views

W-Agora 4.1.6a - subscribe_thread.php HTTP Response Splitting

W-Agora 4.1.6a - subscribethread.php HTTP Response Splitting source: https://www.securityfocus.com/bid/11283/info Multiple vulnerabilities are reported to affect the application. These issues arise due to insufficient sanitization of user-supplied data. A remote attacker may leverage these...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2004/09/30 12:0 a.m.15 views

W-Agora 4.1.6 - a forgot_password.php?userid Cross-Site Scripting

W-Agora 4.1.6 - a forgotpassword.php?userid Cross-Site Scripting source: https://www.securityfocus.com/bid/11283/info Multiple vulnerabilities are reported to affect the application. These issues arise due to insufficient sanitization of user-supplied data. A remote attacker may leverage these...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2004/09/30 12:0 a.m.14 views

W-Agora 4.1.6 - a download_thread.php?thread Cross-Site Scripting

W-Agora 4.1.6 - a downloadthread.php?thread Cross-Site Scripting source: https://www.securityfocus.com/bid/11283/info Multiple vulnerabilities are reported to affect the application. These issues arise due to insufficient sanitization of user-supplied data. A remote attacker may leverage these...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2004/09/30 12:0 a.m.24 views

W-Agora 4.1.6 - 'a download_thread.php?thread' Cross-Site Scripting

source: https://www.securityfocus.com/bid/11283/info Multiple vulnerabilities are reported to affect the application. These issues arise due to insufficient sanitization of user-supplied data. A remote attacker may leverage these vulnerabilities to carry out SQL injection, cross-site scripting, a...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2004/09/30 12:0 a.m.24 views

W-Agora 4.1.6a - 'subscribe_thread.php' HTTP Response Splitting

source: https://www.securityfocus.com/bid/11283/info Multiple vulnerabilities are reported to affect the application. These issues arise due to insufficient sanitization of user-supplied data. A remote attacker may leverage these vulnerabilities to carry out SQL injection, cross-site scripting, a...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2002/06/12 12:0 a.m.103 views

Security holes in LokwaBB and W-Agora

Somebody advised me to post also on bugtraq not only on vuln-dev, I thus do it : I just hope that doesn't give more work to the webmasters. Product 1 : W-Agora 4.1.3 http://www.w-agora.net Problem : - Including file Exploits : - With a file http://www.attacker.com/dbaccess.txt :...

7.7AI score
Exploits0
Rows per page
Query Builder