39 matches found
EUVD-2009-2030
Malware in sbrugna...
EUVD-2008-3654
Malware in sbrugna...
EUVD-2009-2029
Malware in sbrugna...
Yogurt Heist Reveals a Rampant Form of Online Fraud
Plus: “MFA bombing” attacks target Apple users, Israel deploys face recognition tech on Gazans, AI gets trained to spot tent encampments, and OSINT investigators find fugitive Amond Bundy...
yogurt 0.3 (xss/SQL Injection) Multiple Vulnerabilities
No description provided by source. -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- Name : Yogurt Site :...
Yogurt Social Network 3.2 rc1 Module for XOOPS friends.php uid Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/30618/info Yogurt Social Network is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code ...
Yogurt Social Network 3.2 rc1 Module for XOOPS seutubo.php uid Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/30618/info Yogurt Social Network is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code ...
Yogurt Social Network 3.2 rc1 Module for XOOPS tribes.php uid Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/30618/info Yogurt Social Network is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code ...
Yogurt Social Network 3.2 rc1 Module for XOOPS scrapbook.php uid Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/30618/info Yogurt Social Network is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code ...
Yogurt Social Network 3.2 rc1 Module for XOOPS album.php uid Parameter XSS
No description provided by source...
Yogurt Social Network 3.2 rc1 Module for XOOPS index.php uid Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/30618/info Yogurt Social Network is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code ...
CVE-2009-2033
Cross-site scripting XSS vulnerability in index.php in Yogurt 0.3 allows remote attackers to inject arbitrary web script or HTML via the msg parameter...
CVE-2009-2034
SQL injection vulnerability in writemessage.php in Yogurt 0.3, when registerglobals is enabled, allows remote authenticated users to execute arbitrary SQL commands via the original parameter...
Sql injection
SQL injection vulnerability in writemessage.php in Yogurt 0.3, when registerglobals is enabled, allows remote authenticated users to execute arbitrary SQL commands via the original parameter...
CVE-2009-2033
Cross-site scripting XSS vulnerability in index.php in Yogurt 0.3 allows remote attackers to inject arbitrary web script or HTML via the msg parameter...
CVE-2009-2033
CVE-2009-2033: XSS in Yogurt 0.3, via index.php msg parameter. Vulnerable component is index.php; root cause is input not sanitized, enabling remote injection of script/HTML. No remediation details provided in the supplied documents; exploitation status not specified.
CVE-2009-2034
SQL injection vulnerability in writemessage.php in Yogurt 0.3, when registerglobals is enabled, allows remote authenticated users to execute arbitrary SQL commands via the original parameter...
CVE-2009-2034
The CVE-2009-2034 entry concerns Yogurt 0.3, with a vulnerability in writemessage.php that arises when register_globals is enabled. This allows remote authenticated users to execute arbitrary SQL commands via the original parameter, indicating an SQL injection in the affected component. The vulne...
yogurt 0.3 - Cross-Site Scripting SQL Injection
yogurt 0.3 - Cross-Site Scripting SQL Injection -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- Name : Yogur...
Yogurt 0.3 SQL Injection / XSS
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- Name : Yogurt Site : http://sourceforge.net/projects/yogurt/...