|
| Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) | | Published: |  | 26.10.2006 | | Source: |  | | | SecurityVulns ID: |  | 6743 | | Type: |  | remote | | Level: |  | 5/10 | | Description: |  | PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. |
| Affected: |  | WEBAPP : WebAPP 0.9 | | | | PHPNUKE : PHP-Nuke 7.9 | | | | WIKINI : WikiNi 0.4 | | | | PROGSYS : ProgSys 0.151 | | | | AROUNDME : AROUNDMe 0.6 | | | | WHM : WHM 10.8 | | | | CPANEL : cPanel 10.9 | | | | CENTOS : CentOS 4.4 | | | | WHM : WHM X 3.1 | | | | CRUISEWORKS : CruiseWorks 1.09 | | | | PACPOLL : PacPoll 4.0 | | CVE: |  | CVE-2007-1782 (CruiseWorks 1.09e and earlier does not properly restrict user access to certain privileged actions, which allows local users to change the configuration or have other unspecified impact. NOTE: some of these details are obtained from third party information.) |
| Original document |  | farhad koosha, [KAPDA::#61] - PacPoll <= 4.0 Multiple Vulnerabilities (26.10.2006) |
| | | TAN Chew Keong, [vuln.sg] CruiseWorks Directory Traversal and Buffer Overflow Vulnerabilities (26.10.2006) |
| | | raphael.huck_(at)_free.fr, WikiNi Multiple Cross Site Scripting Vulnerabilities (26.10.2006) |
| | | security_(at)_vigilon.com, ProgSys verion 0.151 XSS vulnerability (26.10.2006) |
| | | the_free_kernel_(at)_b0rizq.net, Application orders Linux in WebAPP v0.9.9.2.1 (26.10.2006) |
| | | Debasis Mohanty, Multiple HTTP response splitting vulnerabilities in SHOP-SCRIPT (26.10.2006) |
| | | paisterist.nst_(at)_gmail.com, -==PHP Nuke <= 7.9 SQL Injection and Bypass SQL Injection Protection vulnerabilities==- (26.10.2006) |
| | | noislet_(at)_gmail.com, AROUNDMe 0.6.9 remonte file inclusion (26.10.2006) |
| | | crackers_child_(at)_sibersavascilar.com, WHM 10.8.0 cPanel 10.9.0 R50 CentOS 4.4 i686 WHM X v3.1.0 Xss Vulnerability (26.10.2006) |
| | | Some One, XSS in Zwahlen Online Shop (26.10.2006) |
|
|
|
|
|
