14 matches found
myBloggie 2.1.6 - Multiple Remote SQL Injection Vulnerabilities
No description provided by source. netVigilance Security Advisory 40 myBloggie version 2.1.6 Multiple SQL Injection Vulnerability Description: myBloggie http://mywebland.com/mybloggie/ is considered one of the most simple, user-friendliest yet packed with features Weblog system available to date...
Pebble vulnerable to HTTP header injection
Overview Pebble contains an HTTP header injection vulnerability. Pebble is an open source weblog system. Pebble contains an HTTP header injection vulnerability. Takahisa Kishiya reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning...
Serendipity PHP Weblog System Remote Command Execution
Exploit for php platform in category web applications postProcess'', $quality, $type . "$filename"; //if we have windows server ifisset$ENV'OS' && eregi'window',$ENV'OS' $cmd = eregreplace'/','\',$cmd; //echo $cmd.""; $output = system$cmd; errorlog'NETPBM: '.$cmd; //errorlog$output; $this-command...
myBloggie 2.1.6 SQL-Injection, Advanced INSERT INTO Injection technique
myBloggie 2.1.6 SQL-Injection, Advanced INSERT INTO Injection technique Software: myBloggie 2.1.6 Severity: High Author: Robin Verton info at robinverton dot de Date: Jun. 12 2011 Vendor: http://mybloggie.mywebland.com/ Software Description: "myBloggie is considered one of the most simple,...
myBloggie 2.1.6 SQL Injection
myBloggie 2.1.6 SQL-Injection, Advanced INSERT INTO Injection technique Software: myBloggie 2.1.6 Severity: High Author: Robin Verton Date: Jun. 12 2011 Vendor: http://mybloggie.mywebland.com/ Software Description: "myBloggie is considered one of the most simple, user-friendliest yet packed with...
Blosxom vulnerable to cross-site scripting
Overview Blosxom, a weblog system contains a cross-site scripting vulnerability. Blosxom is an open source weblog system. Blosxom contains a cross-site scripting vulnerability. Yoshinori Ohta of Business Architects Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer...
JVN#03300113 Blosxom vulnerable to cross-site scripting
Blosxom is an open source weblog system. Blosxom contains a cross-site scripting vulnerability. Impact An arbitrary script can be executed on the user's web browser. Solution Update the Software Apply the latest udpate provided by the developer. Products Affected Blosxom 2.1.1 and earlier...
MyBloggie 2.1.6 - Multiple SQL Injections
MyBloggie 2.1.6 - Multiple SQL Injections netVigilance Security Advisory 40 myBloggie version 2.1.6 Multiple SQL Injection Vulnerability Description: myBloggie http://mywebland.com/mybloggie/ is considered one of the most simple, user-friendliest yet packed with features Weblog system available t...
myBloggie 2.1.6 Multiple Remote SQL Injection Vulnerabilities
Exploit for unknown platform in category web applications ============================================================= myBloggie 2.1.6 Multiple Remote SQL Injection Vulnerabilities ============================================================= netVigilance Security Advisory 40 myBloggie version...
Hyper NIKKI System cross-site request forgery vulnerability
Overview Hyper NIKKI System hns, a weblog system from the Hyper NIKKI System Project, contains a cross-site request forgery CSRF vulnerability. Impact If a weblog administrator accesses a malicious web page, an attacker could add, alter, or delete the weblog text. If the weblog text is successful...
MyBloggie 2.1.6 SQL Injection
Application: MyBloggie 2.1.6 Web Site: http://mybloggie.mywebland.com/ Versions: 2.1.6 and below Platform: linux, windows, freebsd, sun Bug: SQL Injection Severity: High Fix Available: No ------------------------------------------------------- 1 Introduction 2 Bug 3 The Code 4 Fix 5 About Vigilon...
[x0n3-h4ck] myBloggie 2.1.5 XSS exploit
-=--------------------ADVISORY-------------------=- myBloggie 2.1.5 Author: CorryL [email protected] -=-------------------------------------------------------=- -=+ Application: myBloggie -=+ Version: 2.1.5 -=+ Vendor's URL: http://mywebland.com/download.php?id=19 -=+ Platform: WindowsLinuxUnix...
myBloggie <= 2.1.3 (mybloggie_root_path) Remote File Inclusion Vulnerability
------------------------------------------------------------------------ ----------------- myBloggie 2.1.3 mybloggierootpath Remote File Inclusion ------------------------------------------------------------------------ ----------------- Author : Sh3ll Date : 2006/04/29 Location : Iran - Tehran...
HTTP Response Splitting in Serendipity 0.7-beta4
SECURITY ADVISORY: HTTP Response Splitting in Serendipity 0.7-beta4 AUTHOR: Chaotic Evil chaoticevil $$$at$$$ spyring $$$dot$$$ com DATE: October 21st, 2004 PRODUCT: Serendipity 0.7-beta4 October 14th, 2004 Recommended release, most stable - www.s9y.org FROM THE VENDOR WEBSITE: Serendipity is a...