Computer Security
[EN] no-pyccku

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
updated since 21.09.2006
SecurityVulns ID:6642
Threat Level:
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:MAXDEV : MD-Pro 1.0
 ALLMYGUESTS : ALlMyGuests 0.4
 EXV2 : exV2 2.0
 PHPARTENAIRE : PHPartenaire 1.0
 POWERNEWS : PowerNews 1.1
 PTNEWS : PTNews 1.7
 DRUPAL : Search Keywords Drupal module 4.7
 DOTNETNUKE : DotNetNuke 4.3
 DOTNETNUKE : DotNetNuke 3.3
Original documentdocumentSECUNIA, [SA22051] DotNetNuke "error" Parameter Cross-Site Scripting Vulnerability (21.09.2006)
 documentSECUNIA, [SA22050] MAXdev MD-Pro Cross-Site Scripting Vulnerability (21.09.2006)
 documentSECUNIA, [SA21979] eSyndiCat Directory Software "what" Cross-Site Scripting (21.09.2006)
 documentSECUNIA, [SA22021] Drupal Search Keywords Module Script Insertion (21.09.2006)
 documentSECUNIA, [SA22028] PT News "pgname" Cross-Site Scripting Vulnerability (21.09.2006)
 documentSECUNIA, [SA22030] NextAge Cart "CatId" and "SearchWd" Cross-Site Scripting (21.09.2006)
 documentCvIr.System_(at), PowerNews v1.1.0 (nbs) Remote File Inclusion (21.09.2006)
 documentdadiss_(at), PHPartenaire => $url_phpartenaire Remote File Inclusion Exploit (21.09.2006)
 documentBrahim_(at), AllMyGuests => ?_AMGconfig[cfg_serverpath] Remote File Inclusion Exploit (21.09.2006)
Files:Exploits exV2 <= "sort" SQL injection / administrative credentials disclosure

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod