23 matches found
EUVD-1999-0935
Malware in sbrugna...
EUVD-2003-1227
Malware in sbrugna...
CVE-1999-0930
wwwboard allows a remote attacker to delete message board articles via a malformed argument...
WWWBoard远程管理口令泄露漏洞
BugCVE: CVE-1999-0954 BUGTRAQ: 649 wwwboard.pl是Matt Wright写的一个PERL脚本,用来处理Web留言板。默认安装的WWWBoard存在漏洞,远程攻击者可以窃取WWWBoard管理用户的加密口令。默认WWWBoard的管理用户名是 WebAdmin ,口令是 WebBoard 。 WWWBoard的口令文件 passwd.txt 默认存放在Web根目录下,即使WWWBoard的管理员修改了口令,远程攻击者也可以在下载离线后暴力破解口令文件。 2.0 Alpha 2 临时解决方法:...
WWWboard password disclosure
//A vulnerability found in WWWboard that shows the administrative user names and passwords. Althought the password is hashed, It can easily be decoded. //Effected versions: Version 2.0 ALPHA 2 //File name: passwd.txt //File location: http://victim/wwwboard/passwd.txt //Google dork:...
WWWBoard 2.0 Alpha 2 (passwd.txt) Password Disclosure Vulnerability
WWWBoard 2.0 Alpha 2 passwd.txt Password Disclosure Vulnerability Affected Software: WWWBoard 2.0 Alpha Download: http://www.scriptarchive.com/wwwboard.html Bugfounder: bd0rk Contact: bd0rkathackermail.com Greetz: str0ke, Dner, TheJT, x0r32 +Exploit: http://target/wwwboardpath/passwd.txt...
WWWBoard 2.0 - 'passwd.txt' Remote Password Disclosure
WWWBoard 2.0 Alpha 2 passwd.txt Password Disclosure Vulnerability Affected Software: WWWBoard 2.0 Alpha Download: http://www.scriptarchive.com/wwwboard.html Bugfounder: bd0rk Contact: bd0rkathackermail.com Greetz: str0ke, Döner, TheJT, x0r32 +Exploit: http://target/wwwboardpath/passwd.txt...
WWWBoard 2.0 - passwd.txt Remote Password Disclosure
WWWBoard 2.0 - passwd.txt Remote Password Disclosure WWWBoard 2.0 Alpha 2 passwd.txt Password Disclosure Vulnerability Affected Software: WWWBoard 2.0 Alpha Download: http://www.scriptarchive.com/wwwboard.html Bugfounder: bd0rk Contact: bd0rkathackermail.com Greetz: str0ke, Döner, TheJT, x0r32...
WWWBoard 2.0 (passwd.txt) Remote Password Disclosure Vulnerability
No description provided by source. WWWBoard 2.0 Alpha 2 passwd.txt Password Disclosure Vulnerability Affected Software: WWWBoard 2.0 Alpha Download: http://www.scriptarchive.com/wwwboard.html Bugfounder: bd0rk Contact: bd0rkathackermail.com Greetz: str0ke, Döner, TheJT, x0r32 +Exploit:...
WWWBoard 2.0 (passwd.txt) Remote Password Disclosure Vulnerability
Exploit for cgi platform in category web applications ================================================================== WWWBoard 2.0 passwd.txt Remote Password Disclosure Vulnerability ================================================================== Affected Software: WWWBoard 2.0 Alpha...
CVE-2003-1237
The CVE-2003-1237 entry documents a cross-site scripting (XSS) vulnerability in WWWBoard 2.0A2.1 and earlier. The issue allows remote attackers to inject arbitrary HTML or web script via a message post. Affected software: WWWBoard versions up to 2.0A2.1 and earlier. The root cause is not explicit...
CVE-2003-1237
Cross-site scripting vulnerability XSS in WWWBoard 2.0A2.1 and earlier allows remote attackers to inject arbitrary HTML or web script via a message post...
wwwboard passwd.txt
This WWWBoard board system comes with a password file passwd.txt installed next to the file SPDX-FileCopyrightText: 1999 Jonathan Provencher Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
[PersianHacker.NET 200502-05] WWWoard passwd
Persianhacker.net Full Path Disclosure and PHP Injection In Pafiledb 3.1 Final WWWBoard is a threaded World Wide Web discussion forum and message board, which allows users to post new messages, followup to existing ones and more. The current release in 2.0 ALPHA 2.1, which means there still are a...
WWWBoard Password File Disclosure (deprecated)
Binary data 2593.prm...
[SCSA-007] Cross Site Scripting Vulnerabilities in WWWBoard
Security Corporation Security Advisory SCSA-007 PROGRAM: WWWBoard HOMEPAGE: http://www.scriptarchive.com VULNERABLE VERSIONS: 2.0A2.1 and prior DESCRIPTION WWWBoard is "A threaded discussion forum that allows users to post new messages, followup to existing ones and more. Includes a basic admin t...
CVE-1999-0930
The CVE-1999-0930 issue affects the wwwboard Perl script (wwwboard.pl). It arises when a POST submission allows a malicious user to modify the hidden followup field, which references the previous message; altering this value can cause existing messages to be overwritten or deleted. The Seebug ent...
CVE-1999-0954
WWWBoard has a default username and default password...
CVE-1999-0954
WWWBoard contains a default administrative account (WebAdmin/WebBoard) and exposes a password file (passwd.txt) in the web root, enabling remote attackers to obtain encrypted credentials. The vulnerability is driven by hard-coded defaults and insecure password storage/download behavior, allowing ...
CVE-1999-0953
Summary: CVE-1999-0953 affects WWWBoard. The vulnerability arises because the password file (passwd.txt) is stored under the web root, making it accessible to remote attackers. As described in multiple sources, WWWBoard stores encrypted passwords in this file and an attacker can obtain and decode...