9 matches found
EUVD-2008-6874
Malware in sbrugna...
EUVD-2008-6875
Malware in sbrugna...
CVE-2008-6915
Cross-site scripting XSS vulnerability in viewpropdetails.php in Zeeways ZEEPROPERTY 1.0 allows remote attackers to inject arbitrary web script or HTML via the propid parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in viewpropdetails.php in Zeeways ZEEPROPERTY 1.0 allows remote attackers to inject arbitrary web script or HTML via the propid parameter...
CVE-2008-6914
Unrestricted file upload vulnerability in viewprofile.php in Zeeways ZEEPROPERTY 1.0 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a photo in a profile modification, then accessing a related file via a direct request to the file in...
Unrestricted file upload
Unrestricted file upload vulnerability in viewprofile.php in Zeeways ZEEPROPERTY 1.0 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a photo in a profile modification, then accessing a related file via a direct request to the file in...
CVE-2008-6915
CVE-2008-6915 describes a cross-site scripting (XSS) vulnerability in Zeeways ZEEPROPERTY 1.0, specifically in the view_prop_details.php component where the propid parameter can be exploited to inject arbitrary web script or HTML. The vulnerability is triggered via the propid input and could allo...
CVE-2008-6914
Unrestricted file upload vulnerability in viewprofile.php in Zeeways ZEEPROPERTY 1.0 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a photo in a profile modification, then accessing a related file via a direct request to the file in...
CVE-2008-6914
CVE-2008-6914 affects Zeeways ZEEPROPERTY 1.0. Unrestricted file upload in viewprofile.php lets remote authenticated users upload a file with an executable extension as a profile photo and later access the file via a direct request to the file in companylogo/, enabling potential code execution. R...