25 matches found
EUVD-2011-0530
Malware in sbrugna...
EUVD-2007-4097
Malware in sbrugna...
EUVD-2007-2267
Malware in sbrugna...
EUVD-2008-2896
Malware in sbrugna...
CVE-2020-25950
Advanced Webhost Billing System 3.7.0 is affected by Cross Site Request Forgery CSRF attacks that can delete a contact from the My Additional Contact page...
CVE-2020-25950
Advanced Webhost Billing System 3.7.0 is affected by Cross Site Request Forgery CSRF attacks that can delete a contact from the My Additional Contact page...
Cross site request forgery (csrf)
Advanced Webhost Billing System 3.7.0 is affected by Cross Site Request Forgery CSRF attacks that can delete a contact from the My Additional Contact page...
CVE-2020-25950
Vulnerability summary (CVE-2020-25950) : A CSRF flaw in Advanced Webhost Billing System 3.7.0 can delete a contact via the My Added Contact page. The affected component is the web application logic handling contact management; the root cause is insufficient validation of request origin for state-...
CVE-2020-25950
Advanced Webhost Billing System 3.7.0 is affected by Cross Site Request Forgery CSRF attacks that can delete a contact from the My Additional Contact page...
Awbs Advanced Webhost Billing System 跨站请求伪造漏洞
Awbs Advanced Webhost Billing System is a Php-based web billing management system for managed hosting from Awbs USA. The platform provides web hosting and or domain name registration business services, providing an automated solution for web hosting management. A cross-site request forgery...
Advanced Webhost Billing System 3.7.0 Cross Site Request Forgery
Exploit Title: Advanced Webhost Billing System 3.7.0 - Cross-Site Request Forgery CSRF Date: 06/01/2021 Exploit Author: Rahul Ramakant Singh Vendor Homepage: https://www.awbs.com/ Version: 3.7.0 Tested on Windows Steps: 1. Login into the application with the help of email and password. 2. Navigat...
Advanced Webhost Billing System 3.7.0 - Cross-Site Request Forgery (CSRF)
Exploit Title: Advanced Webhost Billing System 3.7.0 - Cross-Site Request Forgery CSRF Date: 06/01/2021 Exploit Author: Rahul Ramakant Singh Vendor Homepage: https://www.awbs.com/ Version: 3.7.0 Tested on Windows Steps: 1. Login into the application with the help of email and password. 2. Navigat...
Advanced Webhost Billing System 2.2.2 Contact.PHP Multiple Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/19226/info Advanced Webhost Billing System AWBS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage any of these issues to have...
AWBS 2.9.2 Blind SQL Injection
AWBS 2.9.2 Blind SQL Injection 0day ============================================================================================= Dork....: inurl:/cart?ca=addother&oid= Date....: 01-16-2011 Author..: ShivX Contact.: shivanxatgmaildotcom Vendor..: http://www.awbs.com Link....:...
Advanced Webhost Billing System (AWBS) 2.9.2 - 'oid' SQL Injection
source: https://www.securityfocus.com/bid/45827/info Advanced Webhost Billing System AWBS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data. A successful exploit may allow an attacker to compromise the application, access or modify data, or...
Sql injection
SQL injection vulnerability in news.php in Advanced Webhost Billing System AWBS 2.3.3 through 2.7.1, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the viewnews parameter...
CVE-2008-2903
SQL injection vulnerability in news.php in Advanced Webhost Billing System AWBS 2.3.3 through 2.7.1, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the viewnews parameter...
CVE-2007-4112
Multiple SQL injection vulnerabilities in Advanced Webhost Billing System AWBS before 2.6.0, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via unspecified vectors. NOTE: this can be leveraged for XSS attacks that "bypass AWBS's anti-XSS input validation...
CVE-2007-4113
Unspecified vulnerability in Advanced Webhost Billing System AWBS before 2.6.0 allows remote authenticated users to obtain configuration data about other dedicated servers via unspecified vectors...
Advanced Webhost Billing System Cart2.PHP远程文件包含漏洞
Advanced Webhost Billing System是一款基于PHP的WEB应用程序。 Advanced Webhost Billing System不正确过滤用户提交的输入,远程攻击者可以利用漏洞以WEB权限执行任意命令。 问题是'cart2.php'脚本对用户提交的'workdir'参数缺少过滤,指定远程服务器上的文件作为包含参数,可导致以WEB权限执行任意命令。 Advanced Webhost Billing System AWBS 2.4 目前没有解决方案提供: http://www.awbs.com/...