EUVD-2007-1417

Malware in sbrugna...

EUVD-2007-5771

Malware in sbrugna...

EUVD-2008-1839

Malware in sbrugna...

WORK System E-Commerce <= 3.0.1 - Remote Include Vulnerability

No description provided by source. ============================================================================================ WORK System E-Commerce ginclude Remote File Inclusion Vulnerability ============================================================================================...

Work System ECommerce 3.0.3/3.0.4 Forum.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/21580/info WORK system e-commerce is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and...

work system e-commerce <= 3.0.5 - Remote File Inclusion Vulnerability

No description provided by source. Rodrigo Duarte WuefezAT2die4.com ;D WORK system e-commerce: WORK PHP,Mysql content management system CMS e-commerce or not : ajax, workflow, content,package,language,currency,country,price,stock,group user,CSS,banner,logo,...

CVE-2008-1839

Multgiple cross-site scripting XSS vulnerabilities in module/main.php in WORK system e-commerce 4.0.9 allow remote attackers to inject arbitrary web script or HTML via the 1 day, 2 month, and 3 year parameters. NOTE: the provenance of this information is unknown; the details are obtained solely...

CVE-2008-1839

CVE-2008-1839 affects WORK system e-commerce 4.0.9. The vulnerability is described as multiple cross-site scripting (XSS) in module/main.php, exploitable via the (1) day, (2) month, and (3) year parameters. The notes indicate not all provenance is confirmed and details come from third-party sourc...

CVE-2007-5801

Unspecified vulnerability in WORK system e-commerce before 4.0.2 has unknown impact and attack vectors related to "Ajax pages."...

CVE-2007-5801

Unspecified vulnerability in WORK system e-commerce before 4.0.2 has unknown impact and attack vectors related to "Ajax pages."...

CVE-2007-5801

Technical details for CVE-2007-5801 are not publicly available in the provided documents; no affected versions, exploitation details, or fixes are disclosed here. Monitor for updates.

CVE-2007-1423

Multiple PHP remote file inclusion vulnerabilities in WORK system e-commerce 3.0.5 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the ginclude parameter to include/includetop.php and certain other PHP scripts...

CVE-2007-1423

The CVE-2007-1423 entry concerns multiple PHP remote file inclusion vulnerabilities in WORK system e-commerce 3.0.5 and earlier. The root cause is that the g_include parameter used by include/include_top.php (and certain other PHP scripts) can be manipulated to cause local/remote file inclusion, ...

CVE-2007-1423

Multiple PHP remote file inclusion vulnerabilities in WORK system e-commerce 3.0.5 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the ginclude parameter to include/includetop.php and certain other PHP scripts...

WORK system e-commerce <= 3.0.5 Remote File Inclusion Vulnerability

No description provided by source. Rodrigo Duarte WuefezAT2die4.com ;D WORK system e-commerce: WORK PHP,Mysql content management system CMS e-commerce or not : ajax, workflow, content,package,language,currency,country,price,stock,group user,CSS,banner,logo,...

work system E-Commerce 3.0.5 - Remote File Inclusion

work system E-Commerce 3.0.5 - Remote File Inclusion Rodrigo Duarte WuefezAT2die4.com ;D WORK system e-commerce: WORK PHP,Mysql content management system CMS e-commerce or not : ajax, workflow, content,package,language,currency,country,price,stock,group user,CSS,banner,logo,...

Work System eCommerce 3.0.3/3.0.4 - &#039;forum.php&#039; Remote File Inclusion

source: https://www.securityfocus.com/bid/21580/info WORK system e-commerce is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the underlying system; other...

CVE-2006-6041

Multiple PHP remote file inclusion vulnerabilities in Laurent Van den Reysen WORK system e-commerce 3.0.2, and other versions before 3.0.4, allow remote attackers to execute arbitrary PHP code via a URL in the ginclude parameter to 1 index.php, 2 module/forum/forum.php, 3 unspecified files under...

WORK System E-Commerce &lt;= 3.0.1 Remote Include Vulnerability

No description provided by source. ============================================================================================ WORK System E-Commerce ginclude Remote File Inclusion Vulnerability ============================================================================================...

WORK System E-Commerce 3.0.1 - Remote File Inclusion

============================================================================================ WORK System E-Commerce ginclude Remote File Inclusion Vulnerability ============================================================================================ Product............: WORK system e-commerce...