17 matches found
EUVD-2006-2545
Malware in sbrugna...
EUVD-2006-2543
Malware in sbrugna...
EUVD-2006-2544
Malware in sbrugna...
CVE-2006-2543
Xtreme Topsites 1.1 allows remote attackers to trigger MySQL errors and possibly conduct SQL injection attacks via unspecified vectors in join.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Xtreme Topsites 1.1 allow remote attackers to inject arbitrary web script or HTML via the 1 id parameter in stats.php and 2 unspecified inputs in lostid.php, probably the searchthis parameter. NOTE: one or more of these vectors might be resulta...
CVE-2006-2545
Multiple cross-site scripting XSS vulnerabilities in Xtreme Topsites 1.1 allow remote attackers to inject arbitrary web script or HTML via the 1 id parameter in stats.php and 2 unspecified inputs in lostid.php, probably the searchthis parameter. NOTE: one or more of these vectors might be resulta...
Sql injection
Multiple SQL injection vulnerabilities in Xtreme Topsites 1.1, with magicquotesgpc disabled, allow remote attackers to execute arbitrary SQL commands via the 1 searchthis parameter in lostid.php and 2 id parameter in stats.php. NOTE: the provenance of this information is unknown; portions of the...
CVE-2006-2544
Multiple SQL injection vulnerabilities in Xtreme Topsites 1.1, with magicquotesgpc disabled, allow remote attackers to execute arbitrary SQL commands via the 1 searchthis parameter in lostid.php and 2 id parameter in stats.php. NOTE: the provenance of this information is unknown; portions of the...
Sql injection
Xtreme Topsites 1.1 allows remote attackers to trigger MySQL errors and possibly conduct SQL injection attacks via unspecified vectors in join.php...
CVE-2006-2545
CVE-2006-2545 affects Xtreme Topsites 1.1. The vulnerability is described as multiple cross-site scripting (XSS) flaws accessible via the id parameter in stats.php and via unspecified inputs in lostid.php (likely the searchthis parameter), with one or more vectors possibly stemming from SQL injec...
CVE-2006-2544
Multiple SQL injection vulnerabilities in Xtreme Topsites 1.1, with magicquotesgpc disabled, allow remote attackers to execute arbitrary SQL commands via the 1 searchthis parameter in lostid.php and 2 id parameter in stats.php. NOTE: the provenance of this information is unknown; portions of the...
CVE-2006-2545
Multiple cross-site scripting XSS vulnerabilities in Xtreme Topsites 1.1 allow remote attackers to inject arbitrary web script or HTML via the 1 id parameter in stats.php and 2 unspecified inputs in lostid.php, probably the searchthis parameter. NOTE: one or more of these vectors might be resulta...
CVE-2006-2543
CVE-2006-2543 affects Xtreme Topsites 1.1. The vulnerability is in join.php and allows remote attackers to trigger MySQL errors and, possibly, conduct SQL injection via unspecified vectors. The NVD entry rates the impact at a base score of 5.1 (Medium) with a network attack vector, no authenticat...
CVE-2006-2544
CVE-2006-2544 affects Xtreme Topsites 1.1 with magic_quotes_gpc disabled, allowing remote attackers to trigger SQL injection through two parameters: searchthis in lostid.php and id in stats.php. The vulnerability enables arbitrary SQL execution and has a NVD base score of 5.1 (Medium) with networ...
CVE-2006-2543
Xtreme Topsites 1.1 allows remote attackers to trigger MySQL errors and possibly conduct SQL injection attacks via unspecified vectors in join.php...
topsitesXSS.txt
Xtremescripts Topsites v1.1 Homepage: http://www.xtremescripts.com/topsites.php Description: Xtreme Topsites is a popular topsite PHP script for websites. Most commonly used across anime websites at the moment. The topsite will count hits/clicks in and hits out and will rank them on total hits so...
Xtremescripts Topsites v1.1
Xtremescripts Topsites v1.1 Homepage: http://www.xtremescripts.com/topsites.php Description: Xtreme Topsites is a popular topsite PHP script for websites. Most commonly used across anime websites at the moment. The topsite will count hits/clicks in and hits out and will rank them on total hits so...