57 matches found
EUVD-2005-1315
Malware in sbrugna...
EUVD-2005-1314
Malware in sbrugna...
EUVD-2008-6482
Malware in sbrugna...
EUVD-2007-5964
Malware in sbrugna...
EUVD-2008-6465
Malware in sbrugna...
yappa-ng vulnerable to cross-site scripting
Overview yappa-ng provided by yet another PHP photo album next generation according to the original report submitted by the reporter is a PHP photo gallery. yappa-ng contains a cross-site scripting vulnerability CWE-79 which allows unintentional script execution on the user's web browser. During...
JVN#55833077: yappa-ng vulnerable to cross-site scripting
yappa-ng provided by yet another PHP photo album next generation according to the original report submitted by the reporter is a PHP photo gallery. yappa-ng contains a cross-site scripting vulnerability CWE-79 which allows unintentional script execution on the user's web browser. Impact An...
yappa-ng <= 2.3.3-beta0 (album) Local File Inclusion Vulnerability
No description provided by source. o------------------------------------------------------------------------------------x | Local File Include Vulnerability | o------------------------------------------------------------------------------------o | Software : yappa-ng Version 2.3.2 | | Vendor :...
yappa-ng Query String XSS
No description provided by source. source: http://www.securityfocus.com/bid/32623/info The 'yappa-ng' program is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script...
Yappa-NG 1.x/2.x Unspecified Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13372/info yappa-ng is prone to an unspecified cross-site scripting vulnerability. This issue may allow for theft of cookie-based authentication credentials or other attacks. The vendor has not published any specific...
yappa-ng <= 2.3.1 (admin_modules) Remote File Include Vulnerability
No description provided by source. ============================================================================================== yappa-ng = v2.3.1 adminmodules Remote File Inclusion Exploit =============================================================================================== Critical...
yappa-ng index.php album Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/32623/info The 'yappa-ng' program is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script...
Yappa-NG 1.x/2.x Unspecified Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13371/info yappa-ng is prone to a remote file include vulnerability. This issue may let remote attackers include and execute malicious remote PHP scripts. The vendor has not published any specific details about this...
yappa-ng 2.3.2 LFI
Local file include vulnerability in yappa-ng album parameter Vulnerability Type: Local File Include For the exploit source code contact DSquare Security sales team...
HTB22954: Path disclousure in yappa-ng Photo Gallery
Vulnerability ID: HTB22954 Reference: http://www.htbridge.ch/advisory/pathdisclousureinyappangphotogallery.html Product: yappa-ng Photo Gallery Vendor: http://www.zirkon.at/ http://www.zirkon.at/ Vulnerable Version: 2.3.2 Vendor Notification: 12 April 2011 Vulnerability Type: Path disclousure Ris...
Cross site scripting
Cross-site scripting XSS vulnerability in Fritz Berger yet another php photo album - next generation yappa-ng allows remote attackers to inject arbitrary web script or HTML via the query string to the default URI...
CVE-2008-6515
Cross-site scripting XSS vulnerability in Fritz Berger yet another php photo album - next generation yappa-ng allows remote attackers to inject arbitrary web script or HTML via the query string to the default URI...
CVE-2008-6515
CVE-2008-6515 describes a cross-site scripting (XSS) vulnerability in Fritz Berger’s yet another php photo album - next generation (yappa-ng). The issue allows remote attackers to inject arbitrary web script or HTML via the query string to the default URI. The available records identify the affec...
CVE-2008-6495
Cross-site scripting XSS vulnerability in index.php in Fritz Berger yet another php photo album - next generation yappa-ng 2.3.2 allows remote attackers to inject arbitrary web script or HTML via the album parameter...
CVE-2008-6495
Summary (CVE-2008-6495) : A cross-site scripting (CWE-79) vulnerability is present in Fritz Berger’s yet another PHP photo album next generation (yappa-ng) 2.3.2, affecting the index.php file via the album parameter. Documents from JVNDB-2021-000909 and JVN:55833077 describe an XSS that can lead ...