Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published: 25.04.2006
Source:
SecurityVulns ID: 6044
Type: remote
Level: 5/10
Description: PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected: INVISION : Invision Power Board 2.1
HELPCENTERLIVE : Help Center Live 2.0
VWAR : VWar 1.21
AMPLECOM : ampleShop 2.1
PHPMYAGENDA : phpMyAgenda 3.0
RIBLOG : RI Blog 1.1
BUILT2GO : built2go Movie Review 1.0
SLSITE : SL_Site 1.0
PHOTOCORN : photokorn 1.53
PHOTOCORN : photokorn 1.542
PHPWEBFTP : PhpWebFtp 2.3
PHPWEBGALLERY : PhpWebGallery 1.6

Original document SECUNIA, [SA19801] PhpWebGallery "picture.php" Disclosure of Arbitrary Pictures (25.04.2006)

spam_(at)_we11er.co.uk, Invision Vulnerabilities, including remote code execution (25.04.2006)

arko.dhar_(at)_gmail.com, PhpWebFtp Cross Site Scripting Vulnerability (25.04.2006)

document aminrayden_(at)_yahoo.com, NextAge Shopping Cart Software XSS (25.04.2006)

Dr-Jr7_(at)_hotmail.com, photokorn 1.53 , 1.542 << Sql (25.04.2006)

SECUNIA, [SA19776] Help Center Live osTicket SQL Injection Vulnerabilities (25.04.2006)

SECUNIA, [SA19792] SL_site Multiple Vulnerabilities and Weakness (25.04.2006)

document SECUNIA, [SA19749] built2go Movie Review "full_path" File Inclusion Vulnerability (25.04.2006)

omnipresent_(at)_email.it, RIblog Remote SQL Injection Exploit (25.04.2006)

arko.dhar_(at)_gmail.com, VWar Path Disclosure (25.04.2006)

Aesthetico, [MajorSecurity] phpMyAgenda 3.0 Final - Remote File Include Vulnerability (25.04.2006)

document r0t, ampleShop™ eCommerce Software vuln. (25.04.2006)

Discuss: Read or add your comments to this news (0 comments)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

test server