EUVD-2008-0244

Malware in sbrugna...

EUVD-2008-0245

Malware in sbrugna...

Zero CMS 1.0 - Alpha Arbitrary File Upload / SQL Injection Vulnerabilities

No description provided by source. | | | / | |\ \ / | / |/ | | | | |/ \ | | / \ \ | \ \ | | | | | \ | |/ \ | | // | || | | | ||| /| / /\ | |||| | | /| / / | | Zero CMS Remote Arbitrary File Upload / SQL Injections | | Version: = 1.0 Alpha Last | | Vendor: www.zero-cms.com | | Discovered by:...

CVE-2008-0233

Unrestricted file upload vulnerability in Zero CMS 1.0 Alpha and earlier allows remote attackers to bypass intended access restrictions and upload and execute arbitrary files by uploading an avatar file with an accepted Content-Type such as image/jpeg...

Unrestricted file upload

Unrestricted file upload vulnerability in Zero CMS 1.0 Alpha and earlier allows remote attackers to bypass intended access restrictions and upload and execute arbitrary files by uploading an avatar file with an accepted Content-Type such as image/jpeg...

CVE-2008-0233

Unrestricted file upload vulnerability in Zero CMS 1.0 Alpha and earlier allows remote attackers to bypass intended access restrictions and upload and execute arbitrary files by uploading an avatar file with an accepted Content-Type such as image/jpeg...

CVE-2008-0233

Zero CMS 1.0 Alpha and earlier are affected by an unrestricted file upload vulnerability in the avatar upload feature (Content-Type: image/jpeg). This allows remote attackers to bypass access restrictions and upload/execute arbitrary files. Exploitation details are referenced in public advisories...

CVE-2008-0232

Multiple SQL injection vulnerabilities in Zero CMS 1.0 Alpha allow remote attackers to execute arbitrary SQL commands via 1 the id parameter to index.php, or the 2 f or t parameters to forums/index.php...

Sql injection

Multiple SQL injection vulnerabilities in Zero CMS 1.0 Alpha allow remote attackers to execute arbitrary SQL commands via 1 the id parameter to index.php, or the 2 f or t parameters to forums/index.php...

CVE-2008-0232

CVE-2008-0232 affects Zero CMS 1.0 Alpha, with multiple SQL injection flaws exposed through the id parameter in index.php and the f or t parameters in forums/index.php. The underlying issue is SQL commands can be injected via these inputs, allowing remote attackers to manipulate the database and ...

CVE-2008-0232

Multiple SQL injection vulnerabilities in Zero CMS 1.0 Alpha allow remote attackers to execute arbitrary SQL commands via 1 the id parameter to index.php, or the 2 f or t parameters to forums/index.php...

Zero CMS 1.0 Alpha Arbitrary File Upload / SQL Injection Vulnerabilities

No description provided by source. | | | / | |\ \ / | / |/ | | | | |/ \ | | / \ \ | \ \ | | | | | \ | |/ \ | | // | || | | | ||| /| / /\ | |||| &...

Zero CMS 1.0 Alpha Arbitrary File Upload / SQL Injection Vulnerabilities

Exploit for unknown platform in category web applications ======================================================================== Zero CMS 1.0 Alpha Arbitrary File Upload / SQL Injection Vulnerabilities ======================================================================== | | | / | |\ \ / | /...

zerocms-sql.txt

| | | / | |\ \ / | / |/ | | | | |/ \ | | | |||| | | /| / / | | Zero CMS Remote Arbitrary File Upload / SQL Injections | | Version: = 1.0 Alpha Last | | Vendor: www.zero-cms.com | | Discovered by: KiNgOfThEwOrLd | | Intro: | | | | An attacker can bypass the avatar upload extension filter editing...