CVE-2004-1818
published 2004-03-15CVE-2004-1818: Cross-site scripting (XSS) vulnerability in nmimage.php in 4nalbum 0.92 for PHP-Nuke 6.5 through 7.0 allows remote attackers to execute arbitrary script as…
PriorityP423medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
1.98%
78.1th percentile
Cross-site scripting (XSS) vulnerability in nmimage.php in 4nalbum 0.92 for PHP-Nuke 6.5 through 7.0 allows remote attackers to execute arbitrary script as other users by injecting arbitrary script into the z parameter.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Apple QuickTime - '_Marshaled_pUnk' Backdoor Client-Side Arbitrary Code Execution
exploitdb·2010-08-30
CVE-2010-1818 Apple QuickTime - '_Marshaled_pUnk' Backdoor Client-Side Arbitrary Code Execution
Apple QuickTime - '_Marshaled_pUnk' Backdoor Client-Side Arbitrary Code Execution
---
Original Source: http://reversemode.com/index.php?option=com_content&task=view&id=69&Itemid=1
Victim prerequisites:
* Internet Explorer.
* XP,Vista,W7.
* Apple Quicktime 7.x, 6.x ( 2004 versions are also vulnerable, older versions not checked )
1. Victim is enticed into visiting, by any mean, a specially crafted webpage.
2. Attacker's payload to be executed under the context of the browser.
3. Attacker calls his girlfriend to inform about the successful exploitation, who indeed turns out to be very interested in the issue. She demands more technical details.
4. Attacker wakes up.
Technical details
QTPlugin.ocx implements IPersistPropertyBag2::Read (1000E330) to handle params received from where it
Exploit-DB
WarpSpeed 4nAlbum Module 0.92 - 'nmimage.php?z' Cross-Site Scripting
exploitdb·2004-03-15
CVE-2004-1818 WarpSpeed 4nAlbum Module 0.92 - 'nmimage.php?z' Cross-Site Scripting
WarpSpeed 4nAlbum Module 0.92 - 'nmimage.php?z' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/9881/info
It has been reported that 4nAlbum is prone to multiple vulnerabilities. These issues are primarily due to a failure of the module to validate user input.
There is an information disclosure issue with the 'displaycategory.php' script.
There is a remote file inclusion vulnerability in the 'displaycategory.php' script.
A cross-site scripting vulnerability in the 'nmimage.php' script has also been reported.
Finally an SQL injection vulnerability has been reported. This issue may be leveraged through the 'modules.php' script of phpNuke while requesting the 'index' file of the 4nAlbum module.
This issue has been reported to affect version 0.92 of the software. It i
No writeups or analysis indexed.
http://marc.info/?l=bugtraq&m=107937780222514&w=2http://secunia.com/advisories/11134http://www.osvdb.org/4293http://www.securityfocus.com/bid/9881https://exchange.xforce.ibmcloud.com/vulnerabilities/15497http://marc.info/?l=bugtraq&m=107937780222514&w=2http://secunia.com/advisories/11134http://www.osvdb.org/4293http://www.securityfocus.com/bid/9881https://exchange.xforce.ibmcloud.com/vulnerabilities/15497
2004-03-15
Published