11 matches found
EUVD-2008-5264
Malware in sbrugna...
EUVD-2008-5267
Malware in sbrugna...
EUVD-2008-5266
Malware in sbrugna...
EUVD-2008-5265
Malware in sbrugna...
CVE-2008-5287
SQL injection vulnerability in catagorie.php in Werner Hilversum FAQ Manager 1.2 allows remote attackers to execute arbitrary SQL commands via the catid parameter...
Remote file inclusion
PHP remote file inclusion vulnerability in include/header.php in Werner Hilversum FAQ Manager 1.2, when registerglobals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the configpath parameter...
Sql injection
SQL injection vulnerability in fulltxt.php in Werner Hilversum Clean CMS 1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2008-5288
CVE-2008-5288 affects Werner Hilversum FAQ Manager 1.2. It is a PHP remote file inclusion vulnerability in include/header.php when register_globals is enabled, allowing an attacker to execute arbitrary PHP code via a URL supplied in the config_path parameter. Affects versions/hosting context are ...
CVE-2008-5287
The CVE-2008-5287 entry documents a SQL injection vulnerability in the Werner Hilversum FAQ Manager 1.2, specifically in catagorie.php where the cat_id parameter can be manipulated to execute arbitrary SQL commands. Affected component: catagorie.php; vulnerable context: handling of cat_id in the ...
CVE-2008-5290
The CVE-2008-5290 entry documents a cross-site scripting (XSS) vulnerability in Werner Hilversum Clean CMS 1.5. The flaw affects the full_txt.php component, where user-supplied input via the id parameter can be reflected in output, enabling an attacker to inject arbitrary web script or HTML. This...
CVE-2008-5289
CVE-2008-5289 describes a SQL injection vulnerability in the Clean CMS 1.5 product, specific to the full_txt.php endpoint. The vulnerability arises from unsafely handling the id parameter, allowing remote attackers to inject and execute arbitrary SQL commands. Documented sources (NVD, CVE listing...