[CLOSE] OSVDB ID : 16154 - Disclosed: 2005-05-06

Description:

A remote overflow exists in 4D WebSTAR. The Tomcat plugin fails to validate URLs resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution or denial of service resulting in a loss of integrity, and/or availability.

[CLOSE] OSVDB ID : 8086 - Disclosed: 2002-07-03

Description:

WebSTAR Web Server contains an unspecified flaw. No further details have been provided.

[CLOSE] OSVDB ID : 8078 - Disclosed: 2002-03-20

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 82321 - Disclosed: 2010-11-11

Description:

4images contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the /admin/templates.php script does not require multiple steps or explicit confirmation for sensitive transactions for the execution of PHP code. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into [DOING WHAT] in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 75520 - Disclosed: 2011-04-21

Description:

4images contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the admin/categories.php script not properly sanitizing user-supplied input to the 'auth_viewcat' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 78956 - Disclosed: 2012-01-31

Description:

4images contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'admin/categories.php' script not properly sanitizing user-supplied input to the 'cat_parent_id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 78711 - Disclosed: 2012-02-01

Description:

4images contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'cat_parent_id' parameter upon submission to the admin/categories.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 78779 - Disclosed: 2012-02-01

Description:

4images contains a flaw that allows a remote cross site redirection attack. This flaw exists because the application does not validate the 'redirect' parameter upon submission to theadmin/index.php script. This could allow a user to create a specially crafted URL, that if clicked, would redirect a victim from the intended legitimate web site to an arbitrary web site of the attacker's choosing. Such attacks are useful as the crafted URL initially appear to be a web page of a trusted site. This could be leveraged to direct an unsuspecting user to a web page containing attacks that target client side software such as a web browser or document rendering programs.

[CLOSE] OSVDB ID : 68941 - Disclosed: 2010-10-27

Description:

Input appended to the URL after admin/plugins/clear_cache.php is not properly sanitised in the "show_form_header()" function in admin/admin_functions.php before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

[CLOSE] OSVDB ID : 68942 - Disclosed: 2010-10-27

Description:

Input appended to the URL after admin/plugins/migrate_keywords.php is not properly sanitised in the "show_form_header()" function in admin/admin_functions.php before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

[CLOSE] OSVDB ID : 75149 - Disclosed: 2010-11-27

Description:

4images contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the categories.php script not properly sanitizing user-supplied input to the 'page' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data. Additionally, if a failed query is performed, the program will disclose the software's installation path. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

[CLOSE] OSVDB ID : 55093 - Disclosed: 2009-02-14

Description:

(Description Provided by CVE) : Directory traversal vulnerability in global.php in 4images before 1.7.7, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the l parameter.

[CLOSE] OSVDB ID : 67385 - Disclosed: 2010-07-19

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 55508 - Disclosed: 2009-06-15

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in includes/functions.php in 4images 1.7 through 1.7.7 allows remote attackers to inject arbitrary web script or HTML via vectors related to the url variable.

[CLOSE] OSVDB ID : 23529 - Disclosed: 2006-02-26

Description:

4images contains a flaw that allows a remote attacker to access files outside of the web path. The issue is due to the 'index.php' script not properly sanitizing user input, specifically directory traversal style attacks (../../) supplied via the 'template' variable. This might lead to a loss of confidentiality.

[CLOSE] OSVDB ID : 25154 - Disclosed: 2006-04-28

Description:

4images contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'member.php' script not properly sanitizing user-supplied input to the 'sessionid' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 55092 - Disclosed: 2009-06-12

Description:

4images contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'user_homepage' parameters upon submission to the 'member.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 75521 - Disclosed: 2011-04-21

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 68940 - Disclosed: 2010-09-23

Description:

4images contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions. The application allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to e.g. add an arbitrary group or add an administrative user by tricking a logged in administrative user into visiting a malicious web site.

[CLOSE] OSVDB ID : 24796 - Disclosed: 2006-04-14

Description:

4images contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'user_name' variable upon submission to the register.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 29567 - Disclosed: 2006-10-08

Description:

(Description Provided by CVE) : SQL injection vulnerability in search.php in 4images 1.7.x allows remote authenticated users to execute arbitrary SQL commands via the search_user parameter.

[CLOSE] OSVDB ID : 25153 - Disclosed: 2006-04-28

Description:

4images contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'top.php' script not properly sanitizing user-supplied input to the 'sessionid' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 80606 - Disclosed: 2012-03-13

Description:

4images contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions for the manipulation of the email field in the user profile. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 4292 - Disclosed: 2004-03-15

Description:

4nAlbum contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the displaycategory.php script not properly sanitizing input to the "basepath" variable. An attacker may use this to include an arbitrary file from a remote server which will be processed and any commands executed.

[CLOSE] OSVDB ID : 4291 - Disclosed: 2004-03-15

Description:

4nAlbum contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker requests the "displaycategory.php" script with no arguments, which will disclose the physical path resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 4294 - Disclosed: 2004-03-15

Description:

4nAlbum contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the "gid" variable in the "modules.php" script is not verified properly and will allow an attacker to inject or manipulate SQL queries.

[CLOSE] OSVDB ID : 4293 - Disclosed: 2004-03-15

Description:

4nAlbum contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "z" variable upon submission to the "nmimage.php" script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 42811 - Disclosed: 2008-03-06

Description:

4nChat Module for PHP-Nuke contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'modules.php' script not properly sanitizing user-supplied input to the 'roomid' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 46767 - Disclosed: 2008-07-07

Description:

4ndvddb Module for PHP-Nuke contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'modules.php' script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 31059 - Disclosed: 2007-01-01

Description:

(Description Provided by CVE) : SQL injection vulnerability in modules.php in 4nNukeWare 4nForum 0.91 allows remote attackers to execute arbitrary SQL commands via the tid parameter.