14 matches found
EUVD-2008-0584
Malware in sbrugna...
EUVD-2007-2363
Malware in sbrugna...
EUVD-2007-1157
Malware in sbrugna...
EUVD-2009-1406
Malware in sbrugna...
EUVD-2008-0585
Malware in sbrugna...
webSPELL <= 4.01.02 (id) Remote Edit Topics Vulnerability
No description provided by source. +=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=+=--=--=--=--=--=-+ | webSPELL = 4.01.02 id Remote Edit Topics Vulnerability | Note | +=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=+=--=--=--=--=--=-+ | discovered by athos -...
Webspell 4.2.1 search-injection vulnerability-a vulnerability warning-the black bar safety net
Webspell 4.2.1 procedures exist to search-typeSQL injectioncould obtain the administrator user password Search injected into the page: http://localhost/webspell/asearch.php?site=search&table=user&column=nickname&exact=true&identifier=userID&searchtemp=searchuser&search= Storm the Admin Password...
webSPELL 4.01.02 - id Remote Edit Topics
webSPELL 4.01.02 - id Remote Edit Topics +=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=+=--=--=--=--=--=-+ | webSPELL = 4.01.02 id Remote Edit Topics Vulnerability | Note | +=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=+=--=--=--=--=--=-+ | discovered by athos -...
webSPELL 4.1.2 - index.php Cross-Site Scripting
webSPELL 4.1.2 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/28294/info webSPELL is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script co...
Design/Logic Flaw
picture.php in WebSPELL 4.01.02 and earlier allows remote attackers to read arbitrary files via the file parameter...
CVE-2007-1163
SQL injection vulnerability in printview.php in webSPELL 4.01.02 and earlier allows remote attackers to execute arbitrary SQL commands via the topic parameter, a different vector than CVE-2007-1019, CVE-2006-5388, and CVE-2006-4783...
webSPELL <= 4.01.01 Database Backup Download Vulnerability
Exploit for unknown platform in category web applications ========================================================== webSPELL = 4.01.01 Database Backup Download Vulnerability ========================================================== WebSPELL = 4.01.01 Accessible Database Backup Download Exploit...
webSPELL 4.01.01 - Database Backup Download
WebSPELL = 4.01.01 Accessible Database Backup Download Exploit Discovered by: Trex Visit: www.SecuritySector.org / www.UnderGround.ag Exploit: http://SITE/PATH/admin/database.php?action=write&userID=1 Solution: http://cms.webspell.org/index.php?site=files&file=15 milw0rm.com 2006-09-12...
webSPELL 4.01.01 - Database Backup Download
webSPELL 4.01.01 - Database Backup Download WebSPELL = 4.01.01 Accessible Database Backup Download Exploit Discovered by: Trex Visit: www.SecuritySector.org / www.UnderGround.ag Exploit: http://SITE/PATH/admin/database.php?action=write&userID=1 Solution:...