Computer Security
[EN] securityvulns.ru no-pyccku


Web applications security vulnerabilities (PHP, ASP, JSP, CGI, Perl)
Published:03.01.2006
Source:
SecurityVulns ID:5590
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:DRUPAL : Drupal 4.6
 JELSOFT : vBulletin 3.5
 PRIMOPLACE : Primo Cart 1.0
 OPENXCHANGE : Open Xchange 0.8
 VEGO : VEGO Links Builder 2.0
 VEGO : VEGO Web Forum 1.26
 CHIPMUNK : Chipmunk Guestbook 1.4
 PHPBOOK : phpBook 1.3
 PHPENPALS : PHPenpals
 PHPJOURNALER : PHPjournaler 1.0
 MYBB : MyBB 1.01
 DISCUS : Discus 3.10
 BNET : B-net Software 1.0
 PHANATIC : Chimera Web Portal System 0.2
Original documentdocumentAliaksandr Hartsuyeu, [eVuln] Chimera Web Portal System Multiple Vulnerabilities (03.01.2006)
 documentAliaksandr Hartsuyeu, [eVuln] Chipmunk Guestbook XSS Vulnerability (03.01.2006)
 documentAliaksandr Hartsuyeu, [eVuln] PHPjournaler SQL Injection Vulnerability (03.01.2006)
 documentalireza hassani, [KAPDA::#19] - Html Injection in vBulletin 3.5.2 (03.01.2006)
 documentSECUNIA, [SA18271] B-net Software Script Insertion Vulnerabilities (03.01.2006)
 documentSECUNIA, [SA18283] Discus Error Message Cross-Site Scripting Vulnerability (03.01.2006)
 documentSECUNIA, [SA18281] MyBB Multiple Vulnerabilities (03.01.2006)
 documentSECUNIA, [SA18268] phpBook "email" PHP Code Injection Vulnerability (03.01.2006)
 documentSECUNIA, [SA18269] PHPenpals "personalID" SQL Injection Vulnerability (03.01.2006)
 documentSECUNIA, [SA18265] PHPjournaler "readold" SQL Injection Vulnerability (03.01.2006)
 documentSECUNIA, [SA18263] Web Wiz Products "txtUserName" SQL Injection Vulnerability (03.01.2006)
 documentSECUNIA, [SA18252] phpBB "url" bbcode Script Insertion Vulnerability (03.01.2006)
 documentSECUNIA, [SA18273] VEGO Web Forum "theme_id" SQL Injection Vulnerability (03.01.2006)
 documentSECUNIA, [SA18270] Chipmunk GuestBook Script Insertion Vulnerability (03.01.2006)
 documentSECUNIA, [SA18272] VEGO Links Builder "username" SQL Injection Vulnerability (03.01.2006)
 documentThomas Pollet, [Full-disclosure] Open Xchange XSS (03.01.2006)
 document:) :), drupal all versiyon xss (03.01.2006)
 documentr0t, Primo Cart SQL inj. (03.01.2006)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod