Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published: 08.03.2006
Source:
SecurityVulns ID: 5869
Type: remote
Level: 5/10
Description: PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected: EKINBOARD : EKINboard 1.0
WORDPRESS : WordPress 2.0
LOUDBLOG : Loudblog 0.41
SHOUTLIVE : ShoutLIVE 1.1
AKARRU : Akarru Social BookMarking Engine 0.4
LURKER : lurker 2.0
BMAIL : bMail 9.0
OWL : Owl Intranet Engine 0.82
TEXTFILEBB : TextFileBB 1.0

Original document retard_(at)_30gigs.com, textfileBB <= 1.0 Multiple XSS (08.03.2006)

Aliaksandr Hartsuyeu, [eVuln] EKINboard 'img' BBCode XSS & Cookie 'username' SQL Injection Vulnerabilities (08.03.2006)

h4cky0u, [Full-disclosure] HYSA-2006-005 WordPress 2.0.1 Remote DoS Exploit (08.03.2006)

document SECUNIA, [SA19142] Owl Intranet Engine "xrms_file_root" File Inclusion Vulnerability (08.03.2006)

SECUNIA, [SA19147] bMail GBK Charsets SQL Injection Vulnerability (08.03.2006)

SECUNIA, [SA19136] Lurker Multiple Vulnerabilities (08.03.2006)

SECUNIA, [SA19112] Akarru Social BookMarking Engine SQL Injection Vulnerability (08.03.2006)

document Aliaksandr Hartsuyeu, [eVuln] ShoutLIVE PHP Code Execution & Multiple XSS Vulnerabilities (08.03.2006)

tzitaroth_(at)_gmail.com, Loudblog 0.41 SQL Injection, Local file read/include (08.03.2006)

Files: ShoutLIVE <= 1.1.0 Remote Php Code Execution
Wordpress 2.0.1 Remote DoS Exploit
Discuss: Read or add your comments to this news (0 comments)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod