12 matches found
EUVD-2006-4489
Malware in sbrugna...
EUVD-2006-4488
Malware in sbrugna...
ezportal.txt
:: Ezportal/Ztml v1.0 Multiple vulnerabilities :: ------------------------------------------------ Software : Ezportal/Ztml Website : http://www.ztml.org Bug Discover : Hessam-x / www.hessamx.net I. Multiple Cross Site Scripting Vulnerabilities -------------------------------------------------...
CVE-2006-4500
Cross-site scripting XSS vulnerability in index.php in ezPortal/ztml CMS 1.0 allows remote attackers to inject arbitrary web script or HTML via the 1 about, 2 again, 3 lastname, 4 email, 5 password, 6 album, 7 id, 8 table, 9 desc, 10 doc, 11 mname, 12 max, 13 htpl, 14 pheader, and possibly other...
CVE-2006-4501
SQL injection vulnerability in index.php in ezPortal/ztml CMS 1.0 allows remote attackers to execute arbitrary SQL commands via the 1 about, 2 album, 3 id, 4 use, 5 desc, 6 doc, 7 mname, 8 max, and possibly other parameters...
CVE-2006-4501
SQL injection vulnerability in index.php in ezPortal/ztml CMS 1.0 allows remote attackers to execute arbitrary SQL commands via the 1 about, 2 album, 3 id, 4 use, 5 desc, 6 doc, 7 mname, 8 max, and possibly other parameters...
CVE-2006-4501
Summary: CVE-2006-4501 is a SQL injection vulnerability in ezPortal/ztml CMS 1.0, affecting index.php. An attacker can modify the SQL query through the parameters: about, album, id, use, desc, doc, mname, max, and possibly others, leading to arbitrary SQL execution. The NVD entry documents a base...
CVE-2006-4500
Cross-site scripting XSS vulnerability in index.php in ezPortal/ztml CMS 1.0 allows remote attackers to inject arbitrary web script or HTML via the 1 about, 2 again, 3 lastname, 4 email, 5 password, 6 album, 7 id, 8 table, 9 desc, 10 doc, 11 mname, 12 max, 13 htpl, 14 pheader, and possibly other...
CVE-2006-4500
The CVE-2006-4500 entry concerns a Cross-site Scripting (XSS) flaw in ezPortal/ztml CMS 1.0. The vulnerability arises in index.php, where multiple parameters (including about, lastname, email, password, album, id, table, desc, doc, mname, max, htpl, pheader, and possibly others) can be used to in...
CVE-2006-4502
The CVE-2006-4502 entry concerns ezPortal/ztml CMS 1.0, where remote attackers can bypass authentication by accessing the direct Administration Area script. Affected component is the Administration Area authentication check; the underlying cause is bypass of access controls, enabling unauthentica...
CVE-2006-4502
ezPortal/ztml CMS 1.0 allows remote attackers to bypass authentication controls via a direct request to the "Administration Area" script...
Ezportal/Ztml v1.0 Multiple vulnerabilities
:: Ezportal/Ztml v1.0 Multiple vulnerabilities :: ------------------------------------------------ Software : Ezportal/Ztml Website : http://www.ztml.org Bug Discover : Hessam-x / www.hessamx.net I. Multiple Cross Site Scripting Vulnerabilities -------------------------------------------------...