26 matches found
EUVD-2008-3378
Malware in sbrugna...
EUVD-2008-3377
Malware in sbrugna...
Web Wiz Forum 9.5 admin_group_details.asp mode Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/30398/info Web Wiz Forums is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the...
Web Wiz Forum 6.34/7.0/7.5 Unauthorized Private Forum Access Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8957/info A vulnerability has been reported in Web Wiz Forum that could allow unauthorized access to private forums. The problem occurs when handling malformed requests that make use of 'quote' mode. When this mode is use...
Web Wiz Forum 6.34 Information Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7380/info Web Wiz Forum has been reported prone to sensitive information disclosure vulnerability. An attacker may make a request for and download the underlying Access database file that is used by the Forum application...
Web Wiz Forum Injection Vulnerability
No description provided by source. Title : Web Wiz Forum Injection Vulnerability Author: eXeSoul Home : www.indishell.in or www.andhrahackers.com Email : [email protected] date : 23/3/2011 D0rk : i Powered by Web Wiz Forums category : Web Apps SQli Go To Site :- SQL injection Vulnerability...
Web Wiz Forum 6.34/7.x Search.ASP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20778/info Web Wiz Forum is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...
Web Wiz Forum Injection Vulnerability
Exploit for asp platform in category web applications Title : Web Wiz Forum Injection Vulnerability Author: eXeSoul Home : www.indishell.in or www.andhrahackers.com Email : email protected date : 23/3/2011 D0rk : i Powered by Web Wiz Forums category : Web Apps SQli Go To Site :- SQL injection...
Web Wiz Forum - Injection
Web Wiz Forum - Injection Title : Web Wiz Forum Injection Vulnerability Author: eXeSoul Home : www.indishell.in or www.andhrahackers.com Email : [email protected] date : 23/3/2011 D0rk : i Powered by Web Wiz Forums category : Web Apps SQli Go To Site :- SQL injection Vulnerability...
Web Wiz Forum - Injection
Title : Web Wiz Forum Injection Vulnerability Author: eXeSoul Home : www.indishell.in or www.andhrahackers.com Email : [email protected] date : 23/3/2011 D0rk : i Powered by Web Wiz Forums category : Web Apps SQli Go To Site :- SQL injection Vulnerability +http://site.com/default.asp?pid=524'...
CVE-2008-3392
Cross-site request forgery CSRF vulnerability in Web Wiz Forum 9.5 allows remote attackers to log out a user via a link or IMG tag to logoffuser.asp...
CVE-2008-3391
Multiple cross-site scripting XSS vulnerabilities in Web Wiz Forum 9.5 allow remote attackers to inject arbitrary web script or HTML via the mode parameter to 1 admingroupdetails.asp and 2 admincategorydetails.asp...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Web Wiz Forum 9.5 allow remote attackers to inject arbitrary web script or HTML via the mode parameter to 1 admingroupdetails.asp and 2 admincategorydetails.asp...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in Web Wiz Forum 9.5 allows remote attackers to log out a user via a link or IMG tag to logoffuser.asp...
CVE-2008-3392
Cross-site request forgery CSRF vulnerability in Web Wiz Forum 9.5 allows remote attackers to log out a user via a link or IMG tag to logoffuser.asp...
CVE-2008-3391
CVE-2008-3391: Multiple cross-site scripting (XSS) vulnerabilities in Web Wiz Forum 9.5 allow remote attackers to inject arbitrary script/HTML via the mode parameter to admin_group_details.asp and admin_category_details.asp. Affected product is Web Wiz Forum 9.5; the underlying issue is XSS via u...
CVE-2008-3392
CVE-2008-3392 describes a cross-site request forgery vulnerability in Web Wiz Forum 9.5 that allows remote attackers to log out a user by visiting a crafted link or IMG tag to log_off_user.asp. The published data shows an attacker-authenticated–not required scenario (authentication: NONE) with im...
CVE-2008-3391
Multiple cross-site scripting XSS vulnerabilities in Web Wiz Forum 9.5 allow remote attackers to inject arbitrary web script or HTML via the mode parameter to 1 admingroupdetails.asp and 2 admincategorydetails.asp...
Web Wiz Forum 9.5 - 'admin_group_details.asp?mode' Cross-Site Scripting
source: https://www.securityfocus.com/bid/30398/info Web Wiz Forums is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in...
Web Wiz Forum 6.347.x - search.asp SQL Injection
Web Wiz Forum 6.347.x - search.asp SQL Injection source: https://www.securityfocus.com/bid/20778/info Web Wiz Forum is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow a...