11 matches found
EUVD-2008-1074
Malware in sbrugna...
EUVD-2008-1076
Malware in sbrugna...
CVE-2008-1065
Multiple SQL injection vulnerabilities in index.php in the XM-Memberstats xmmemberstats 2.0e module for XOOPS allow remote attackers to execute arbitrary SQL commands via the 1 letter or 2 sortby parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from...
Sql injection
Multiple SQL injection vulnerabilities in index.php in the XM-Memberstats xmmemberstats 2.0e module for XOOPS allow remote attackers to execute arbitrary SQL commands via the 1 letter or 2 sortby parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from...
Cross site scripting
Cross-site scripting XSS vulnerability index.php in the XM-Memberstats xmmemberstats module for XOOPS allows remote attackers to inject arbitrary web script or HTML via the sortby parameter...
CVE-2008-1065
Multiple SQL injection vulnerabilities in index.php in the XM-Memberstats xmmemberstats 2.0e module for XOOPS allow remote attackers to execute arbitrary SQL commands via the 1 letter or 2 sortby parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from...
CVE-2008-1063
Cross-site scripting XSS vulnerability index.php in the XM-Memberstats xmmemberstats module for XOOPS allows remote attackers to inject arbitrary web script or HTML via the sortby parameter...
CVE-2008-1063
CVE-2008-1063 : A cross-site scripting (XSS) vulnerability in the XM-Memberstats module for XOOPS, exploitable via the sortby parameter in index.php. The affected component is the XM-Memberstats module integrated with XOOPS; the underlying cause is unsanitized input in sortby, enabling remote att...
CVE-2008-1065
Multiple SQL injection vulnerabilities in index.php in the XM-Memberstats xmmemberstats 2.0e module for XOOPS allow remote attackers to execute arbitrary SQL commands via the 1 letter or 2 sortby parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from...
CVE-2008-1065
CVE-2008-1065 affects the XM-Memberstats (xmmemberstats) 2.0e module for XOOPS. The vulnerability is a SQL injection in index.php caused by unsafely handled input in the (1) letter and (2) sortby parameters, enabling remote attackers to craft SQL commands. The reports do not provide explicit expl...
CVE-2008-1063
Cross-site scripting XSS vulnerability index.php in the XM-Memberstats xmmemberstats module for XOOPS allows remote attackers to inject arbitrary web script or HTML via the sortby parameter...