36 matches found
EUVD-2003-1458
Malware in sbrugna...
EUVD-2005-3303
Malware in sbrugna...
EUVD-2004-1949
Malware in sbrugna...
EUVD-2003-0274
Malware in sbrugna...
EUVD-2010-5047
Malware in sbrugna...
EUVD-2005-0998
Malware in sbrugna...
EUVD-2008-0886
Malware in sbrugna...
EUVD-2005-0999
Malware in sbrugna...
CVE-2010-5083
SQL injection vulnerability in the WebLinks module for PHP-Nuke 8.0 allows remote attackers to execute arbitrary SQL commands via the url parameter in an Add action to modules.php...
PHP-Nuke 8.0 -Web_Links Module - Blind SQL Injection
PHP-Nuke new; my $average = 0; print "+ Calculating average load time it may take a while ...\n"; for my $i = 0; $i get$hosto; my $time = time; $average += int$time-$bef; return $average/5; sub Nuke::Usage print "+ Usage: perl nuke.pl \n"; print "+ the host must be the complete path to...
PHP-Nuke 8.0 -Web_Links Module - Blind SQL Injection
PHP-Nuke 8.0 -WebLinks Module - Blind SQL Injection PHP-Nuke new; my $average = 0; print "+ Calculating average load time it may take a while ...\n"; for my $i = 0; $i get$hosto; my $time = time; $average += int$time-$bef; return $average/5; sub Nuke::Usage print "+ Usage: perl nuke.pl \n"; print...
PHP-Nuke <= 8.0 (Web_Links Module) Remote Blind SQL Injection Exploit
Exploit for php platform in category web applications ===================================================================== PHP-Nuke new; my $average = 0; print "+ Calculating average load time it may take a while ...\n"; for my $i = 0; $i get$hosto; my $time = time; $average += int$time-$bef;...
Sql injection
SQL injection vulnerability in modules.php in the WebLinks module for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the cid parameter in a viewlink action...
CVE-2003-1340
Multiple SQL injection vulnerabilities in Francisco Burzi PHP-Nuke 5.6 and 6.5 allow remote authenticated users to execute arbitrary SQL commands via 1 a uid user cookie to modules.php; and allow remote attackers to execute arbitrary SQL commands via an aid admin cookie to the WebLinks module in ...
CVE-2006-1033
Multiple cross-site scripting XSS vulnerabilities in Dragonfly CMS before 9.0.6.1 allow remote attackers to inject arbitrary web script or HTML via 1 uname, 2 error, 3 profile or 4 the username filed parameter to the a YourAccount module, 5 catid, 6 sid, 7 Story Text or 8 Extended text text field...
CVE-2006-1033
Multiple cross-site scripting XSS vulnerabilities in Dragonfly CMS before 9.0.6.1 allow remote attackers to inject arbitrary web script or HTML via 1 uname, 2 error, 3 profile or 4 the username filed parameter to the a YourAccount module, 5 catid, 6 sid, 7 Story Text or 8 Extended text text field...
Dragonfly CMS 9.0.6.1 Web_Links Module - Multiple Cross-Site Scripting Vulnerabilities
Dragonfly CMS 9.0.6.1 WebLinks Module - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/16784/info Dragonfly is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these...
CVE-2005-3304
Multiple SQL injection vulnerabilities in PHP-Nuke 7.8 allow remote attackers to modify SQL queries and execute arbitrary PHP code via 1 the username parameter in the Your Account page, 2 the url parameter in the Downloads module, and 3 the description parameter in the WebLinks module...
CVE-2004-1957
Multiple XSS vulnerabilities affect PostNuke 0.726. Affected vectors include (1) lid and a query parameter to the Downloads module, (2) a query parameter to the Web_links module, and (3) the hlpfile parameter to openwindow.php, enabling remote attackers to inject arbitrary web script or HTML. The...
CVE-2004-1957
Multiple cross-site scripting XSS vulnerabilities in PostNuke 0.726 allows remote attackers to inject arbitrary web script or HTML via the 1 lid and query parameters to the Downloads module, 2 query parameter to the Weblinks module, or 3 hlpfile parameter to openwindow.php...