32 matches found
EUVD-2008-2664
Malware in sbrugna...
EUVD-2008-2663
Malware in sbrugna...
EUVD-2006-5131
Malware in sbrugna...
Yblog uss.php action Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/20280/info Yblog is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage these issues to have arbitrary script code execute in...
yblog 0.2.2.2 (xss/sql) Multiple Vulnerabilities
No description provided by source. / | || | | | | | | | | /| | | | | || ||| ||||| || C. H. R. O. O. T. SECURITY GROUP - -- ----- --- -- -- ---- --- -- - http://www.chroot.org Hacks In Taiwan | || | | | | | | | Conference 2008 | | | | | | | | | || ||| || |||| http://www.hitcon.org Title...
Yblog tem.php action Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/20280/info Yblog is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage these issues to have arbitrary script code execute in...
Yblog funk.php id Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/20280/info Yblog is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage these issues to have arbitrary script code execute in...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in yBlog 0.2.2.2 allow remote attackers to inject arbitrary web script or HTML via 1 the q parameter to search.php, or the n parameter to 2 user.php or 3 uss.php...
CVE-2008-2669
Multiple SQL injection vulnerabilities in yBlog 0.2.2.2 allow remote attackers to execute arbitrary SQL commands via 1 the q parameter to search.php, or the n parameter to 2 user.php or 3 uss.php...
CVE-2008-2668
Multiple cross-site scripting XSS vulnerabilities in yBlog 0.2.2.2 allow remote attackers to inject arbitrary web script or HTML via 1 the q parameter to search.php, or the n parameter to 2 user.php or 3 uss.php...
Sql injection
Multiple SQL injection vulnerabilities in yBlog 0.2.2.2 allow remote attackers to execute arbitrary SQL commands via 1 the q parameter to search.php, or the n parameter to 2 user.php or 3 uss.php...
CVE-2008-2669
Multiple SQL injection vulnerabilities in yBlog 0.2.2.2 allow remote attackers to execute arbitrary SQL commands via 1 the q parameter to search.php, or the n parameter to 2 user.php or 3 uss.php...
CVE-2008-2668
Multiple cross-site scripting XSS vulnerabilities in yBlog 0.2.2.2 allow remote attackers to inject arbitrary web script or HTML via 1 the q parameter to search.php, or the n parameter to 2 user.php or 3 uss.php...
CVE-2008-2668
CVE-2008-2668 : The provided documents identify multiple cross-site scripting (XSS) vulnerabilities in the web application yBlog 0.2.2.2 . The vulnerabilities can be triggered by user-supplied input in the following parameters: (1) the q parameter to search.php, and (2) the n parameter to either ...
CVE-2008-2669
CVE-2008-2669 affects yBlog 0.2.2.2 and involves multiple SQL injection vulnerabilities that allow remote attackers to execute arbitrary SQL commands via parameter inputs: (1) q in search.php, (2) n in user.php, or (3) n in uss.php. The NVD entry lists these as the exposed vectors with a base sco...
yblog-multi.txt
/ | || | | | | | | | | /| | | | | || ||| ||||| || C. H. R. O. O. T. SECURITY GROUP - -- ----- --- -- -- ---- --- -- - http://www.chroot.org Hacks In Taiwan | || | | | | | | | Conference 2008 | | | | | | | | | || ||| || |||| http://www.hitcon.org Title =======:: yBlog 0.2.2.2 Multiple Remote...
yBlog 0.2.2.2 (XSS/SQL) Multiple Remote Vulnerabilities
No description provided by source. / | || | | | | | | | | /| | | | | || ||| ||||| || C. H. R. O. O. T. SECURITY GROUP - -- ----- --- -- -- ---- --- -- - http://www.chroot.org Hacks In Taiwan | || | | | | | | | Conference 2008 | | ...
Yblog 0.2.2.2 - Cross-Site Scripting SQL Injection
Yblog 0.2.2.2 - Cross-Site Scripting SQL Injection / | || | | | | | | | | /| | | | | || ||| ||||| || C. H. R. O. O. T. SECURITY GROUP - -- ----- --- -- -- ---- --- -- - http://www.chroot.org Hacks In Taiwan | || | | | | | | | Conference 2008 | | | | | | | | | || ||| || ||||...
[web-app] yBlog 0.2.2.2 Multiple Remote Vulnerabilities
/ | || | | | | | | | | /| | | | | || ||| ||||| || C. H. R. O. O. T. SECURITY GROUP - -- ----- --- -- -- ---- --- -- - http://www.chroot.org Hacks In Taiwan | || | | | | | | | Conference 2008 | | | | | | | | | || ||| || |||| http://www.hitcon.org Title =======:: yBlog 0.2.2.2 Multiple Remote...
yBlog 0.2.2.2 (XSS/SQL) Multiple Remote Vulnerabilities
Exploit for unknown platform in category web applications ======================================================= yBlog 0.2.2.2 XSS/SQL Multiple Remote Vulnerabilities ======================================================= / | || | | | | | | | | /| | | | | || ||| ||||| || C. H. R. O. O. T...