Computer Security

Web applications security vulnerabilities (PHP, ASP, CGI, Perl, etc)
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Web applications security vulnerabilities (PHP, ASP, CGI, Perl, etc)
Published:01.12.2005
Source:
SecurityVulns ID:5493
Type:remote
Level:5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, mb_send_mail() message headers modification, etc.
Affected:VBULLETIN : vBulletin 3.0
 GALLERY : Gallery 2.0
 DRUPAL : Drupal 4.6
 JELSOFT : vBulletin 3.5
 XARAYA : Xaraya 1.0
 PINAPPLETECHNOLO : Lore 1.5
 DOTCLEAR : Dotclear 1.2
Original documentdocumentSieg Fried, [Full-disclosure] ZRCSA-200504 - dotclear SQL Injection (01.12.2005)
 documentPaul Laudanski, [VulnWatch] XSS & Header Injection in Drupal and vBulletin (01.12.2005)
 documentr0t, Lore SQL inj. vuln. (01.12.2005)
 documentBharat Mediratta, Gallery 2.x Security Advisory (01.12.2005)
 documentretrogod_(at)_aliceposta.it, Xaraya <= 1.0.0 RC4 D.O.S / file corruption (01.12.2005)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server