Computer Security
[EN] securityvulns.ru no-pyccku


Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:03.08.2006
Source:
SecurityVulns ID:6445
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:KAYAKO : Kayako eSupport 2.3
 DRUPAL : Drupal 4.6
 VWAR : VWar 1.5
 MYBB : MyBB 1.1
 DRUPAL : Drupal 4.7
 SAVEWEB : SaveWeb Portal 3.4
 OZJOURNALS : OZJournals 1.5
Original documentdocumentoutlaw_(at)_aria-security.net, CMSimple Cross Site Scripting (03.08.2006)
 documentbeford, Kayako eSupport <= 2.3.1 (subd) Remote File Inclusion Vulnerability: (03.08.2006)
 documentmfoxhacker_(at)_gmail.com, Vwar v1.5.0 <= Sql Injection and XSS vuln. (03.08.2006)
 documentDRUPAL, [Full-disclosure] [DRUPAL-SA-2006-011] Drupal 4.7.3 / 4.6.9 fixes XSS issue (03.08.2006)
 documentluny_(at)_youfucktard.com, OZJournal v1.5 - XSS (03.08.2006)
 documentAliaksandr Hartsuyeu, [eVuln] MyBB 'Avatar URL' XSS Vulnerability (03.08.2006)
 documentdaaan_(at)_gmail.com, Simple CMS (03.08.2006)
 documentx0r0n_(at)_hotmail.com, SaveWeb Portal 3.4 <- (SITE_Path) Remote File Inclusion Vulnerability (03.08.2006)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod