Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:		07.10.2006
Source:
SecurityVulns ID:		6689
Type:		remote
Level:		5/10
Description:		PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected:		HAZIRSITE : HazirSite 2.0
		TORRENTXLUX : TorrentFlux 2.1
		ACKERTODO : ackerTodo 4.2
		EMEK : Emek Portal 2.1
		PHPONLINE : phponline 2.1
		FREEFORUM : FreeForum 0.9
		PHPBB : phpBB User Viewed Posts Tracker 1.0
		CAHIERDETEXTES : Cahier de texte 2.0

Original document		sami_(at)_linuxmail.org, Cahier de textes 2.0 Remote SQL injection Exploit (07.10.2006)
		x0r0n_(at)_hotmail.com, phpBB User Viewed Posts Tracker Version <= 1.0 [phpbb_root_path] File Include Vulnerability (07.10.2006)
		x0r0n_(at)_hotmail.com, FreeForum 0.9.7 (fpath) Remote File Include Vulnerability (07.10.2006)
		aeroxteam_(at)_gmail.com, Vulnerability in Btitracker (07.10.2006)
		xp1o_(at)_msn.com, phponline <= (LangFile) Remote File Inclusion Exploit (07.10.2006)
		Emek Portal v2.1 SQL Injection, Emek Portal v2.1 SQL Injection (07.10.2006)
		HACKERS PAL, FreeWPS File Upload Command Execution (07.10.2006)
		Francesco Laurita, ackerTodo 4.2 SQL Injection Vulnerability (07.10.2006)
		sec_(at)_srasg.stevenroddis.com.au, TorrentFlux User-Agent XSS Vulnerability (07.10.2006)
		Dj_ReMix_20_(at)_hotmail.com, Hazir Site v2.0 Admin SQL Injection (07.10.2006)

Files:		Exploits FreeWPS Command Execution
Discuss:		Read or add your comments to this news (0 comments)