Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published: 02.05.2006
Source:
SecurityVulns ID: 6077
Type: remote
Level: 5/10
Description: PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected: OPENBB : OpenBB 1.0
JSBOARD : jsboard 2.0
E107 : E107 0.617
INVISION : Invision Power Board 2.1
4HOMEPAGES : 4images 1.7
THYME : Thyme 1.3
BLOGMOD : Blog Mod 0.2
CGIIRC : CGI:IRC 0.5
X7CHAT : X7 Chat 2.0

Original document outlaw_(at)_aria-security.net, JSBoard XSS vulnerability (02.05.2006)

outlaw_(at)_aria-security.net, VHCS --- Virtual Hosting Control System Cross Site Scripting (02.05.2006)

SECUNIA, [SA19922] CGI:IRC client.c Buffer Overflow Vulnerability (02.05.2006)

qex_(at)_bsdmail.org, Blog Mod <= 0.2.x SQL Injection (02.05.2006)

document o.y.6_(at)_hotmail.com, OpenBB 1.0.8 Full Path Disclosure (02.05.2006)

o.y.6_(at)_hotmail.com, Invision Power Board v2.1.5 Remote SQL Injection (02.05.2006)

CrAzY.CrAcKeR_(at)_hotmail.com, 4images<-- 1.7.1 SQL Injection (02.05.2006)

outlaw_(at)_aria-security.net, Thyme 1.3 Cross Site Scripting (02.05.2006)

document KeVRter, E107 v.6.17d vuln. (02.05.2006)

r0t, CyberBuild vuln. (02.05.2006)

Files: Exploits X7 Chat <=2.0 \"help_file\" arbitrary local inclusion
I-RATER Platinum Remote File Inclusion exploit
CoolMenus Event Remote File Inclusion exploit
Discuss: Read or add your comments to this news (0 comments)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

test server