28 matches found
EUVD-2005-3911
Malware in sbrugna...
EUVD-2008-3541
Malware in sbrugna...
EUVD-2006-5406
Malware in sbrugna...
WSN Forum 1.21 Memberlist.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15549/info WSN Forum is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could...
Multiple WebmasterSite Products Remote Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/30572/info Multiple WebmasterSite products are prone to a remote shell command-execution vulnerability because the applications fail to sufficiently sanitize user-supplied data. Successfully exploiting this issue will all...
WSN Forum <= 1.3.4 (prestart.php) Remote Code Execution Exploit
No description provided by source. !/usr/bin/php -q -d shortopentag=on ? print ' ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+:...
WSN Classifieds 6.2.12 and 6.2.18 - Multiple Vulnerabilities
No description provided by source. Exploit Title: WSN Classifieds v.6.2.12 & 6.2.18 Multiple Vulnerabilities Script Page : http://www.wsnclassifieds.com Date: 1-12-2011 Author : RandomStorm - http://www.randomstorm.com Avram Marius Gabriel d3v1l Tested on: Windows XP & Vista IE9 - Firefox 8.0 Not...
WSN Forum CSRF Vulnerability
Exploit for php platform in category web applications Exploit Title: WSN Forum CSRF Author: Jonturk75 Vendor or Software Link: http://www.scripts.com/viewscript/wsn-forum/17625/ Category:: webapps Demo : http://demo.wsnforum.com/wsnforumadmin/admin/ Greetz: Inj3ct0r Exploit DataBase 1337day.com...
WSN Classifieds 6.2.12 / 6.2.18 Cross Site Scripting / SQL Injection
Exploit Title: WSN Classifieds v.6.2.12 & 6.2.18 Multiple Vulnerabilities Script Page : http://www.wsnclassifieds.com Date: 1-12-2011 Author : RandomStorm - http://www.randomstorm.com Avram Marius Gabriel d3v1l Tested on: Windows XP & Vista IE9 - Firefox 8.0 Note: Redirect and Html Injection can ...
WSN Classifieds 6.2.12/6.2.18 - Multiple Vulnerabilities
Exploit Title: WSN Classifieds v.6.2.12 & 6.2.18 Multiple Vulnerabilities Script Page : http://www.wsnclassifieds.com Date: 1-12-2011 Author : RandomStorm - http://www.randomstorm.com Avram Marius Gabriel d3v1l Tested on: Windows XP & Vista IE9 - Firefox 8.0 Note: Redirect and Html Injection can ...
WSN Classifieds v.6.2.12 and 6.2.18 Multiple Vulnerabilities
Exploit for php platform in category web applications Exploit Title: WSN Classifieds v.6.2.12 & 6.2.18 Multiple Vulnerabilities Script Page : http://www.wsnclassifieds.com Date: 1-12-2011 Author : RandomStorm - http://www.randomstorm.com Avram Marius Gabriel d3v1l Tested on: Windows XP & Vista IE...
CVE-2008-3555
This CVE (CVE-2008-3555) is a directory traversal/local-file-inclusion flaw in index.php across multiple WSN products (WSN Forum 4.1.43 and earlier; Gallery 4.1.30 and earlier; WSNKB 4.1.36 and earlier; Links 4.1.44 and earlier; possibly Classifieds before 4.1.30). The underlying issue is a vulne...
WebmasterSite (Multiple Products) - Remote Command Execution
WebmasterSite Multiple Products - Remote Command Execution source: https://www.securityfocus.com/bid/30572/info Multiple WebmasterSite products are prone to a remote shell command-execution vulnerability because the applications fail to sufficiently sanitize user-supplied data. Successfully...
Wsn (Multiple Products) - Local File Inclusion / Code Execution
Author: otmorozok428, http://forum.antichat.ru Products: Wsn Forum Enter to upload: http://www.site.com/forum/profile.php?action=editprofile&id=Your User ID See the avatar name at your profile. Upload evil avatar and go to: index.php?custom=yes&TID=../../attachments/avatars/Avatar...
WebmasterSite (Multiple Products) - Remote Command Execution
source: https://www.securityfocus.com/bid/30572/info Multiple WebmasterSite products are prone to a remote shell command-execution vulnerability because the applications fail to sufficiently sanitize user-supplied data. Successfully exploiting this issue will allow an attacker to execute arbitrar...
wsnprod-lfiexec.txt
Author: otmorozok428, http://forum.antichat.ru Products: Wsn Forum Enter to upload: http://www.site.com/forum/profile.php?action=editprofile&id=Your User ID See the avatar name at your profile. Upload evil avatar and go to: index.php?custom=yes&TID=../../attachments/avatars/Avatar...
WSN Forum <= 1.3.4 (pathtoconfig) Remote File Include Exploit / Code Execution Vulnerability
!/usr/bin/php -q -d shortopentag=on ? print ' ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+ +:+ +:+...
CVE-2006-5421
WSN Forum 1.3.4 and earlier allows remote attackers to execute arbitrary PHP code via a modified pathname in the pathtoconfig parameter that points to an avatar image that contains PHP code, which is then accessed from prestart.php. NOTE: this issue has been labeled remote file inclusion, but tha...
CVE-2006-5421
WSN Forum 1.3.4 and earlier allows remote attackers to execute arbitrary PHP code via a modified pathname in the pathtoconfig parameter that points to an avatar image that contains PHP code, which is then accessed from prestart.php. NOTE: this issue has been labeled remote file inclusion, but tha...
CVE-2006-5421
CVE-2006-5421 affects WSN Forum 1.3.4 and earlier. The vulnerability arises when a modified pathname in the pathtoconfig parameter points to an avatar image containing PHP code, which is then accessed by prestart.php, allowing remote attackers to execute arbitrary PHP code. The underlying issue i...