Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) updated since 08.08.2006
Published:		10.08.2006
Source:
SecurityVulns ID:		6462
Type:		remote
Level:		5/10
Description:		PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected:		VWAR : VWar 1.5
		BLUR6EX : blur6ex 0.3
		SIMPLOG : simplog 0.9
		PHPSIMPLESHOP : PHP Simple Shop 2.0
		SAPID : SAPID CMS 123
		PHPCC : phpCC 4.2
		USOLVED : NEWSolved Lite 1.9
		DELUXEBB : DeluxeBB 1.08
		VISUALEVENTSCALE : isual Events Calendar 1.1
		PHPPRINTANALYZER : phpPrintAnalyzer 1.1
		TAGGER : Tagger 3

Original document		MORGAN, Tagger v3 <= BBCodeFile Remote file inclusion (10.08.2006)
		sh3ll_(at)_sh3ll.ir, phpPrintAnalyzer <= 1.1 (rep_par_rapport_racine) Remote File Inclusion Vulnerability (08.08.2006)
		x0r0n_(at)_hotmail.com, Visual Events Calendar v1.1 (cfg_dir) Remote Inclusion Vulnerability (08.08.2006)
		darkz.gsa_(at)_gmail.com, DeluxeBB Multiple Vulnerabilities (08.08.2006)
		piiiiiii pppiiiiiiii, simplog 0.9.3 and prior XSS (08.08.2006)
		AG Spider, Virtual War v1.5.0 Remote File Include (vwar_root) (08.08.2006)
		piiiiiii pppiiiiiiii, blur6ex 0.3 Comment title HTML inyection vuln. (08.08.2006)
		philipp.niedziela_(at)_gmx.de, NEWSolved Lite v1.9.2 (abs_path) Remote File Inclusion (08.08.2006)
		simo64_(at)_morx.org, SAPID CMS remote File Inclusion vulnerabilities (08.08.2006)
		chris_hasibuan_(at)_yahoo.com, SolpotCrew Advisory #6 - phpCC - Beta 4.2 (base_dir) Remote File Inclusion (08.08.2006)
		erdc_(at)_echo.or.id, SolpotCrew Advisory #6 - phpCC - Beta 4.2 (base_dir) Remote File Inclusion (08.08.2006)
		erdc_(at)_echo.or.id, [ECHO_ADV_44$2006] PHP Simple Shop <= 2.0 (abs_path) Remote File Inclusion (08.08.2006)
		c.boulton_(at)_mybboard.com, XennoBB <= 2.1.0 "birthday" SQL injection (08.08.2006)

Files:		Exploits SAPID CMS remote File Inclusion Vulnerabilities
Discuss:		Read or add your comments to this news (0 comments)