Computer Security

PHP, ASP, CGI web applications security vulnerabilities
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



PHP, ASP, CGI web applications security vulnerabilities
updated since 07.06.2005
Published:12.06.2005
Source:
SecurityVulns ID:4861
Type:remote
Level:5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, etc.
Affected:OSCOMMERCE : osCommerce 2.2
 INVISION : Invision Power Board 2.0
 INVISION : Invision Power Board 1.3
 MOZILLA : Camino 0.8
 FLATNUKE : Flatnuke 2.5
 PORTAILPHP : PortailPHP 1.3
 PORTAILPHP : Portail PHP 1.2
 YAPIG : YaPiG 0.94
 LPANEL : Lpanel 1.59
 WWWEB : WWWeb Concepts Events System 1.
 MEDIAWIKI : MediaWiki 1.4
 SAWMILL : Sawmill 7.1
 loki : Loki download manager 2.0
 INVISION : Invision Blog 1.1
 INVISION : Invision Gallery 1.3
 CERBERUS : Cerberus Helpdesk 2.6
 SITEFRAME : Siteframe 3.0
 OVIDENTIA : Ovidentia FX
 AWSD : WebHints 1.03
 KMELEON : K-Meleon 0.8
 SUN : K-Meleon 0.9
 EPING : ePing 1.02
Original documentdocumentSECURITEAM, [EXPL] Invision Power Board SQL Injection (Cookie, Exploit 2) (12.06.2005)
 documentblahplok_(at)_yahoo.com, Webhints v1.03 Remote Command Execution (12.06.2005)
 documentJeiAr, osCommere HTTP Response Splitting (12.06.2005)
 documentSECUNIA, [SA15658] Ovidentia FX "babInstallPath" File Inclusion Vulnerability (10.06.2005)
 documentSECUNIA, [SA15657] Siteframe "LOCAL_PATH" File Inclusion Vulnerability (10.06.2005)
 documentSECUNIA, [SA15641] Cerberus Helpdesk "errorcode" Cross-Site Scripting (10.06.2005)
 documentJeiAr, Invision Gallery Vulnerabilities (10.06.2005)
 documentJeiAr, Invision Community Blog Vulnerabilities (10.06.2005)
 documenty0int_(at)_yahoo.it, Arbitrary code execution in eping plugin (10.06.2005)
 documenthack_912_(at)_hotmail.com, 2 SQL injection in Loki download manager v2.0 (09.06.2005)
 documentSECUNIA, [SA15499] Sawmill Security Bypass and Cross-Site Scripting Vulnerabilities (07.06.2005)
 documentSECUNIA, [SA15590] MediaWiki HTML Attributes Cross-Site Scripting Vulnerability (07.06.2005)
 documentSECUNIA, [SA15595] WWWeb Concepts Events System "password" SQL Injection (07.06.2005)
 documentSECUNIA, [SA15602] Camino Frame Injection Vulnerability (07.06.2005)
 documentSECUNIA, [SA15603] FlatNuke Multiple Vulnerabilities (07.06.2005)
 documentSECUNIA, [SA15589] Lpanel Multiple Vulnerabilities (07.06.2005)
 documentSECUNIA, [SA15600] YaPiG Multiple Vulnerabilities (07.06.2005)
 documentAlberto Trivero, SQL Injection Exploit for Portail PHP < 1.3 (07.06.2005)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server