Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:		05.03.2006
Source:
SecurityVulns ID:		5859
Type:		remote
Level:		5/10
Description:		PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected:		PHPBB : phpBB 2.0
		CUREPHP : CuteNews 1.4
		PHPARCADESCRIPTS : phpArcadeScript 2.0
		EASYFORUM : Easy Forum 2.5
		PHPSTATS : php-stats 0.1
		PIXELPOST : Pixel Post 1.4
		PIXELPOST : Pixel Post 1.5
		TOTALECOMMERCE : TotalECommerce 1.0
		WBB : WBB 2.3
		SIMPLOG : Simplog 1.0

Original document		:) :), DVguestbook 1.0 And 1.2.2 Cross Site Scripting (05.03.2006)
		retard_(at)_30gigs.com, Simplog <= 1.0.2 Vulnerabilities (05.03.2006)
		r57shell_(at)_gmail.com, Wbb 2.3. xss (05.03.2006)
		Mustafa Can Bjorn IPEKCI, Advisory: TotalECommerce (index.asp id) Remote SQL Injection Vulnerability. (05.03.2006)
		roozbeh afrasiabi, [KAPDA::#30] - CuteNews1.4.1 Cross_Site_Scripting Vulnerability (05.03.2006)
		paisterist.nst_(at)_gmail.com, Pixel Post Multiple Vulnerabilities (05.03.2006)
		rgod_(at)_autistici.org, PHP-Stats <= 0.1.9.1 remote commands execution (05.03.2006)
		Aliaksandr Hartsuyeu, [eVuln] Easy Forum XSS Vulnerability (05.03.2006)
		retard_(at)_30gigs.com, phpArcadeScript XSS Injections (05.03.2006)
		paisterist.nst_(at)_gmail.com, phpBB <= 2.0.19 Multiple DoS vulnerabilities (05.03.2006)

Files:		A Simple phpBB Registration And Search DoS Flooder
		TotalECommerce PWD Decrypter
Discuss:		Read or add your comments to this news (0 comments)