Computer Security
[EN] securityvulns.ru no-pyccku


Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:15.04.2006
Source:
SecurityVulns ID:6012
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:OSCOMMERCE : osCommerce 2.2
 ARBLOG : ar-blog 5.2
 PAPOO : Papoo 2.1
 FARSINEWS : Farsinews 2.5
 REDCMS : RedCMS 0.1
 POWERSCRIPTS : PowerClan 1.14
 AWEBNEWS : aWebNews 1.1
 LIFETYPE : LifeType 1.0
 MODX : modx 0.9
 ENCYCLOPEDIA : Encyclopedia 3.0
 PLANETC : planetSearch+ 26.10.2005
Original documentdocumentd4igoro_(at)_gmail.com, planetSearch+ - XSS Vulnerabilities (15.04.2006)
 documentw3.__(at)_hotmail.com, Xss In ar-blog v 5.2 (15.04.2006)
 documentnoch22_(at)_gmail.com, phpBB template file code execution (15.04.2006)
 documentmoep, Serendipity Blog vuln (15.04.2006)
 documentnoch22_(at)_gmail.com, phpBB Admin command execution (15.04.2006)
 documentn0m3rcy_(at)_bsdmail.org, Encyclopedia <= 3.0 (login.php) CrossSite Scripting - XSS (15.04.2006)
 documentrgod_(at)_autistici.org, osCommerce "extras/" information/source code disclosure (15.04.2006)
 documentaminrayden_(at)_yahoo.com, Farsinews Cross-Site Scripting & Path disclosure vulnerability (15.04.2006)
 documentcrasher_(at)_kecoak.or.id, Vulnerabilities in MODx (15.04.2006)
 documentcrasher_(at)_kecoak.or.id, Vulnerabilities in Papoo (15.04.2006)
 documentcrasher_(at)_kecoak.or.id, Vulnerabilities in lifetype (15.04.2006)
 documentAliaksandr Hartsuyeu, [eVuln] aWebNews Multiple XSS and SQL Injection Vulnerabilities (15.04.2006)
 documentd4igoro_(at)_gmail.com, PowerClan 1.14 - SQL Injection (15.04.2006)
 documentAliaksandr Hartsuyeu, [eVuln] RedCMS Multiple XSS and SQL Injection Vulnerabilities (15.04.2006)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod