Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published: 18.01.2006
Source:
SecurityVulns ID: 5655
Type: remote
Level: 5/10
Description: PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected: PHPFUSEBOX : PHP Fusebox 4.0
WBNEWS : WBNews 1.1
BLOGPHP : BlogPHP 1.0
MICROBLOG : microBlog 2.0
CALOGIC : CaLogic Calendars 1.2
BITDAMAGED : geoBlog 1.0
SIMPLEBLOG : SimpleBlog 2.1

Original document night_warrior771_(at)_hotmail.com, PowerPortal Cross-Site Scripting Vulnerability (18.01.2006)

Zinho, [HSC Security Group] Multiple SQL injection/XSS in SimpleBlog 2.1 (18.01.2006)

Aliaksandr Hartsuyeu, [eVuln] geoBlog SQL Injection Vulnerability (18.01.2006)

Aliaksandr Hartsuyeu, [eVuln] CaLogic Calendars Multiple XSS Vulnerabilities (18.01.2006)

document Aliaksandr Hartsuyeu, [eVuln] microBlog BBCode XSS Vulnerability (18.01.2006)

Aliaksandr Hartsuyeu, [eVuln] microBlog SQL Injection Vulnerability (18.01.2006)

Aliaksandr Hartsuyeu, [eVuln] microBlog SQL Injection Vulnerability (18.01.2006)

Aliaksandr Hartsuyeu, [eVuln] BlogPHP Authentication Bypass (18.01.2006)

document dragonjar_(at)_gmail.com, XSS in WBNews < = v1.1.0 (18.01.2006)

king_purba_(at)_yahoo.co.uk, IndonesiaHack Advisory HTML injection in PHP Fusebox (18.01.2006)

:) :), phpXplorer file inclusion (18.01.2006)

Discuss: Read or add your comments to this news (0 comments)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

test server