15 matches found
EUVD-2009-4489
Malware in sbrugna...
Cross site scripting
Cross-site scripting XSS vulnerability in index.php in Zainu 1.0 allows remote attackers to inject arbitrary web script or HTML via the searchSongKeyword parameter in a SearchSong action...
CVE-2009-4523
Cross-site scripting XSS vulnerability in index.php in Zainu 1.0 allows remote attackers to inject arbitrary web script or HTML via the searchSongKeyword parameter in a SearchSong action...
CVE-2009-4523
CVE-2009-4523 is an XSS vulnerability in Zainu 1.0. The issue resides in index.php, vulnerable via the searchSongKeyword parameter in a SearchSong action, allowing remote injection of arbitrary script/HTML. The NVD entry assigns a CVSSv2 base score of 4.3 (medium) with network attack vector, requ...
CVE-2009-4523
Cross-site scripting XSS vulnerability in index.php in Zainu 1.0 allows remote attackers to inject arbitrary web script or HTML via the searchSongKeyword parameter in a SearchSong action...
Zainu <= 1.0 xss
Exploit for unknown platform in category web applications ================ Zainu = 1.0 xss ================ | D R U N K E N | || || || D A N I S H | || || |' R E D N E C K S '--''--''--' PREBEN OG CARSTEN SAY | "WE GAVE U FUCKING VULNS | || || || NOW GIVE US FUCKING BEERS!!!!!!! | || || |'...
Zainu 1.0 xss
No description provided by source. | D R U N K E N | || || || D A N I S H | || || |' R E D N E C K S '--''--''--' PREBEN OG CARSTEN SAY | "WE GAVE U FUCKING VULNS | || || || NOW GIVE US FUCKING BEERS!!!!!!! | || || |' RESEARCH: DRUNKEN DANISH REDNECKS [email protected] '--''--''--...
Zainu 1.0 - searchSongKeyword Cross-Site Scripting
Zainu 1.0 - searchSongKeyword Cross-Site Scripting source: https://www.securityfocus.com/bid/36701/info Zainu is prone to a cross-site scripting vulnerability in the Contact module because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to...
Zainu 1.0 - 'searchSongKeyword' Cross-Site Scripting
source: https://www.securityfocus.com/bid/36701/info Zainu is prone to a cross-site scripting vulnerability in the Contact module because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...
CVE-2009-3310
SQL injection vulnerability in index.php in Zainu 1.0 allows remote attackers to execute arbitrary SQL commands via the albumid parameter in an AlbumSongs action...
Sql injection
SQL injection vulnerability in index.php in Zainu 1.0 allows remote attackers to execute arbitrary SQL commands via the albumid parameter in an AlbumSongs action...
CVE-2009-3310
SQL injection vulnerability in index.php in Zainu 1.0 allows remote attackers to execute arbitrary SQL commands via the albumid parameter in an AlbumSongs action...
CVE-2009-3310
CVE-2009-3310 describes an SQL injection in Zainu 1.0’s index.php, exploitable via the album_id parameter in the AlbumSongs action, allowing remote arbitrary SQL execution. The root cause is unsafe SQL query construction in the application. Public references (NVD/CVE List/PRION) corroborate the v...
Zainu 1.0 - SQL Injection
Zainu 1.0 - SQL Injection -------------------------------------------------------- Zainu - Version 1.0 Remote SQL Injection Vulnerability -------------------------------------------------------- Discovered By: Snakespc ALGERIAN HaCkEr Mail: [email protected]...
Zainu 1.0 - SQL Injection
-------------------------------------------------------- Zainu - Version 1.0 Remote SQL Injection Vulnerability -------------------------------------------------------- Discovered By: Snakespc ALGERIAN HaCkEr Mail: [email protected] -------------------------------------------------------...