Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:		10.03.2006
Source:
SecurityVulns ID:		5881
Type:		remote
Level:		5/10
Description:		PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected:		HOSTINGCONTROLLE : Hosting Controller 6.1
		SPLITBRAIN : DokuWiki
		GUPPY : Guppy 4.5
		PHPATM : PHP Advanced Transfer Manager 1.30
		N8CMS : n8cms 1.1
		N8CMS : n8cms 1.2
		DVGUESTBOOK : DVguestbook 1.0
		FREEFORUM : FreeForum 1.2
		JIROS : Jiros Banner Experience Pro 1.0

Original document		alireza hassani, [KAPDA::#33] - GuppY <= 4.5.11 Remote DoS vulnerability (10.03.2006)
		SECUNIA, [SA19191] Hosting Controller "search" Forum SQL Injection (10.03.2006)
		Mustafa Can Bjorn IPEKCI, Advisory: Jiros Banner Experience Pro Remote Privilege Escalation. (10.03.2006)
		Aliaksandr Hartsuyeu, [eVuln] FreeForum PHP Code Execution & Multiple XSS Vulnerabilities (10.03.2006)
		SECUNIA, [SA19186] DokuWiki Mediamanager EXIF Data Cross-Site Scripting Vulnerability (10.03.2006)
		:) :), n8cms 1.1 & 1.2 version Sql İnjection And XSS (10.03.2006)
		:) :), PHP Advanced Transfer Manager Download users password hashes (10.03.2006)
		:) :), PHP Upload Center Download users password hashes And phpshell Upload (10.03.2006)
		:) :), DVguestbook 1.0 And 1.2.2 Cross Site Scripting (10.03.2006)
		Mustafa Can Bjorn IPEKCI, [Full-disclosure] Advisory: Jiros Banner Experience Pro Remote Privilege Escalation. (10.03.2006)

Discuss:

Read or add your comments to this news (0 comments)