Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published: 30.04.2006
Source:
SecurityVulns ID: 6073
Type: remote
Level: 5/10
Description: PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected: TEXTFILEBB : TextFileBB 1.0
RT : Request Tracker 3.5
MAXTRADE : MaxTrade 1.0
ORBITSCRIPTS : OrbitHYIP 2.0
PINNACLECART : Pinnacle Cart 3.33
CPS : CPS 3.4
MINIBB : miniBB 2.0
WAGORA : W-Agora 4.20
PHPBB : PhpBB TopList 1.3
BARRACUDA : Barracuda 1.1

Original document r0t, Barracuda vuln. (30.04.2006)

r0xes.ratm_(at)_gmail.com, TextFileBB 1.0.16 Multiple XSS (30.04.2006)

outlaw_(at)_aria-security.net, TopList <= 1.3.8 (PHPBB Hack) Remote File Inclusion Vulnerability (30.04.2006)

outlaw_(at)_aria-security.net, XSS Attack On DirectAdmin Hosting Managment (30.04.2006)

document r0xes.ratm_(at)_gmail.com, W-Agora 4.20 XSS (30.04.2006)

CrAzY.CrAcKeR_(at)_hotmail.com, poll.pl<--remote commands execution exploit (30.04.2006)

Private Private, NewsPHP <= All (news.php?include) Multiple Remote File Inclusion Vulnerabilities. (30.04.2006)

KeVRter, SQL Injection: miniBB 2.0 RC6b (30.04.2006)

document r0t, CPS <=3.4.0 XSS (30.04.2006)

r0t, Pinnacle Cart XSS (30.04.2006)

r0t, OrbitHYIP XSS (30.04.2006)

r0t, MaxTrade sql inj. (30.04.2006)

r0t, RT: Request Tracker vuln. (30.04.2006)

Discuss: Read or add your comments to this news (0 comments)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

test server