EUVD-2006-5044

Malware in sbrugna...

wwwThreads Calendar.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/19177/info WWWThreads is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of...

WWWThreads 5.4 Cat Parameter Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/20178/info WWWThreads is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the...

www.eVuln.com : Non-persistent XSS in WWWThreads (perl version)

www.eVuln.com advisory: Non-persistent XSS in WWWThreads perl version Summary: http://evuln.com/vulns/157/summary.html Details: http://evuln.com/vulns/157/description.html -----------Summary----------- eVuln ID: EV0157 Software: n/a Vendor: WWWThreads Version: v5.0.8 Pro perl version Critical...

www.eVuln.com : HTTP Response Splitting in WWWThreads (php version)

www.eVuln.com advisory: HTTP Response Splitting in WWWThreads php version Summary: http://evuln.com/vulns/156/summary.html Details: http://evuln.com/vulns/156/description.html -----------Summary----------- eVuln ID: EV0156 Software: n/a Vendor: WWWThreads Version: 2006.11.25 Critical Level: low...

WWWThreads 5.0.8 Pro Cross Site Scripting

www.eVuln.com advisory: Non-persistent XSS in WWWThreads perl version Summary: http://evuln.com/vulns/157/summary.html Details: http://evuln.com/vulns/157/description.html -----------Summary----------- eVuln ID: EV0157 Software: n/a Vendor: WWWThreads Version: v5.0.8 Pro perl version Critical...

WWWThreads HTTP Response Splitting

www.eVuln.com advisory: HTTP Response Splitting in WWWThreads php version Summary: http://evuln.com/vulns/156/summary.html Details: http://evuln.com/vulns/156/description.html -----------Summary----------- eVuln ID: EV0156 Software: n/a Vendor: WWWThreads Version: 2006.11.25 Critical Level: low...

www.eVuln.com : XSS vulnerability in WWWThreads (php version)

www.eVuln.com advisory: XSS vulnerability in WWWThreads php version Summary: http://evuln.com/vulns/155/summary.html Details: http://evuln.com/vulns/155/description.html -----------Summary----------- eVuln ID: EV0155 Software: n/a Vendor: WWWThreads Version: 2006.11.25 Critical Level: low Type:...

WWWThreads Cross Site Scripting

www.eVuln.com advisory: XSS vulnerability in WWWThreads php version Summary: http://evuln.com/vulns/155/summary.html Details: http://evuln.com/vulns/155/description.html -----------Summary----------- eVuln ID: EV0155 Software: n/a Vendor: WWWThreads Version: 2006.11.25 Critical Level: low Type:...

[SA22211] WWWthreads "Cat" Cross-Site Scripting Vulnerabilities

TITLE: WWWthreads "Cat" Cross-Site Scripting Vulnerabilities SECUNIA ADVISORY ID: SA22211 VERIFY ADVISORY: http://secunia.com/advisories/22211/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: WWWthreads http://secunia.com/product/9471/ DESCRIPTION: Root3rH3ll has...

CVE-2006-5059

CVE-2006-5059 describes multiple cross-site scripting (XSS) vulnerabilities in WWWthreads, affecting version 5.4.2 and earlier. The issue allows remote attackers to inject arbitrary web script or HTML via the Cat parameter to a set of PHP scripts (dosearch.php, postlist.php, showmembers.php, faq_...

CVE-2006-5059

Multiple cross-site scripting XSS vulnerabilities in WWWthreads 5.4.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the Cat parameter to 1 dosearch.php, 2 postlist.php, 3 showmembers.php, 4 faqenglish.php, 5 online.php, 6 login.php, 7 newuser.php, 8 wwwthreads.php,...

wwwthreads <= 5.4.2 croos site script vulnerbilities

PerSiaNFoX DigitaL SecuritY TeaM wwwthreads = 5.4.2 Cross Site Script Vulnerabilities Script...

WWWThreads 5.4 - Cat Multiple Cross-Site Scripting Vulnerabilities

WWWThreads 5.4 - Cat Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/20178/info WWWThreads is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have...

WWWThreads 5.4 - 'Cat' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/20178/info WWWThreads is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting user i...

wwwthreadsXSS.txt

---------------------------------------------------------- Aria-Security.net Advisory Discovered by: l2odon Gr33t to: A.u.r.a & O.U.T.L.A.W & R@1D3N @ DrtRp & Cl0wn ----------------------------------------------------------- Software: wwwThreads Attack method: Cross Site Scripting Original...

CVE-2006-3909

Cross-site scripting XSS vulnerability in calendar.php in WWWthreads allows remote attackers to inject arbitrary web script or HTML via the week parameter...

CVE-2006-3909

CVE-2006-3909 is a Cross-site Scripting (XSS) vulnerability in calendar.php of WWWthreads, exploitable by remote attackers who can inject arbitrary web script or HTML through the week parameter. Affects the WWWthreads calendar.php component; root cause is improper handling of user-supplied week d...

CVE-2006-3909

Cross-site scripting XSS vulnerability in calendar.php in WWWthreads allows remote attackers to inject arbitrary web script or HTML via the week parameter...

wwwThreads XSS

---------------------------------------------------------- Aria-Security.net Advisory Discovered by: l2odon www.Aria-security.net Gr33t to: A.u.r.a & O.U.T.L.A.W & R@1D3N @ DrtRp & Cl0wn ----------------------------------------------------------- Software: wwwThreads Attack method: Cross Site...