Computer Security
[EN] securityvulns.ru no-pyccku


Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:24.02.2006
Source:
SecurityVulns ID:5815
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:NOAH : Classifieds 1.3
 PHPX : phpx 3.5
 DEVWMS : DEV web management system 1.5
 CUBECART : CubeCart 3.0
 RUNCMS : Runcms 1.3
 INFOVISTA : Infovista PortalSE 2.0
 TECASCRIPTS : Teca Diary PE 1.0
 MIRO : Oi! Email Marketing 3.0
 FCKEDITOR : FCKeditor 2.2
 NOCC : NOCC Webmail 1.0
 THINKHOST : iUser Ecommerce 2.1
 PHPLIB : PHPLIB 7.4
 WEBINSTA : WEBInsta Limbo 1.0
 CALCIUM : Calcium 3.10
 ICAL : iCal 3.10
Original documentdocumentSECUNIA, [SA19001] iCal "Calendar Text" Script Insertion Vulnerability (24.02.2006)
 documentSECUNIA, [SA19007] Calcium "EventText" Script Insertion Vulnerability (24.02.2006)
 documentSECUNIA, [SA18723] WEBInsta Limbo Contact Form Script Insertion Vulnerability (24.02.2006)
 documentSECUNIA, [SA18688] PHPX "url" XCode Script Insertion Vulnerability (24.02.2006)
 documentSECUNIA, [SA18714] DEV web management system "City/Region" Script Insertion (24.02.2006)
 documentSECUNIA, [SA16902] PHPLIB Unspecified Code Execution Vulnerability (24.02.2006)
 documentSECUNIA, [SA18903] iUser Ecommerce common.php File Inclusion Vulnerability (24.02.2006)
 documentSECUNIA, [SA19003] iUser Ecommerce Unspecified Vulnerabilities (24.02.2006)
 documentrgod_(at)_autistici.org, NOCC Webmail <= 1.0 multiple vulnerabilities (24.02.2006)
 documentNSA Group, NSA Group Security Advisory NSAG-№195-23.02.2006 Vulnerability FCKeditor 2.0 FC (24.02.2006)
 documentNSA Group, NSA Group Security Advisory NSAG-№196-23.02.2006 Vulnerability FCKeditor 2.2 (24.02.2006)
 documentNSA Group, NSA Group Security Advisory NSAG-№197-23.02.2006 Vulnerability CubeCart 3.0.0 – 3.0.6 (24.02.2006)
 documenth4cky0u, HYSA-2006-003 Oi! Email Marketing 3.0 SQL Injection (24.02.2006)
 documentAliaksandr Hartsuyeu, [eVuln] Teca Diary PE SQL Injection Vulnerability (24.02.2006)
 documentalireza hassani, [KAPDA::#29]Noah's classifieds multiple vulnerabilities (24.02.2006)
 documentroozbeh afrasiabi, [KAPDA::#27] - Runcms 1.x Cross_Site_Scripting vulnerability (24.02.2006)
 documentadvisories_(at)_irmplc.com, IRM 017: Multiple Vulnerabilities in Infovista Portal SE (24.02.2006)
Files:NOCC Webmail <= 1.0 remote commands execution exploit through arbitrary local inclusion & attachment filename prediction

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod