Computer Security
[EN] securityvulns.ru no-pyccku


Web applications security vulnerabilities (PHP, ASP, JSP, CGI, Perl)
Published:13.01.2006
Source:
SecurityVulns ID:5628
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:ACAL : ACal 2.2
 PSOFT : H-Sphere 2.4
 MININUKE : Mininuke 1.8
 FOGBUGZ : FogBugz 4.029
 WORDCIRCLE : Wordcircle 2.17
 TANKLOGGER : TankLogger 2.4
 INTERSPIRE : TrackPoint NX 0.1
 LWCAL : Light Weight Calendar 1.0
Original documentdocumentSECUNIA, [SA18450] Light Weight Calendar "date" PHP Code Execution Vulnerability (13.01.2006)
 documentneset_(at)_wakiza.com, Interspire TrackPoint NX XSS Vulnerability (13.01.2006)
 documentAliaksandr Hartsuyeu, [eVuln] TankLogger SQL Injection Vulnerability (13.01.2006)
 documentAliaksandr Hartsuyeu, [eVuln] ACal Authentication Bypass & PHP Code Insertion (13.01.2006)
 documentAliaksandr Hartsuyeu, [eVuln] Wordcircle Authentication Bypass (13.01.2006)
 documentAliaksandr Hartsuyeu, [eVuln] Wordcircle Multiple SQL Injection & XSS Vulnerabilities (13.01.2006)
 documentneset_(at)_wakiza.com, FogBugz Cross Site Scripting Vulnerability (13.01.2006)
 documentMustafa Can Bjorn IPEKCI, Advisory: MiniNuke CMS System <= 1.8.2 (membership.asp) remote user password change exploit (13.01.2006)
 documentMustafa Can Bjorn IPEKCI, Advisory: MiniNuke CMS System <= 1.8.2 (news.asp) SQL Injection vulnerability (13.01.2006)
 documentMustafa Can Bjorn IPEKCI, Advisory: MiniNuke CMS System <= 1.8.2 (news.asp) SQL Injection vulnerability (13.01.2006)
 documentneset_(at)_wakiza.com, M.Neset KABAKLI (13.01.2006)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod