Computer Security
[EN] securityvulns.ru no-pyccku


Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:06.11.2006
Source:
SecurityVulns ID:6787
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:OPENEMR : OpenEMR 2.8
 PHPCLASSIFIEDS : Php Classifieds 7.1
 QUICKCMS : Quick.Cms.Lite 0.3
 UPB : Ultimate PHP Board 2.0
 MXBB : mxBB mx Smartor Album Module 1.02
 ACIDSTATS : @cid stats 2.3
 ARTICLESCRIPT : Article Script 1.6
 SOHOLAUNCH : Soholaunch 4.9
 CYBEROFOLIO : Cyberfolio 2.0
 AGORA : Agora 1.4
Original documentdocumenterdc_(at)_echo.or.id, [ECHO_ADV_60_2006] OpenEMR <=2.8.1 Multiple Remote File Inclusion Vulnerability (06.11.2006)
 documentnavairum_(at)_gmail.com, Stanford university SCARF user editing (06.11.2006)
 documenterdc_(at)_echo.or.id, [ECHO_ADV_59_2006]Agora 1.4 RC1 "$_SESSION[PATH_COMPOSANT]" Remote File Inclusion Vulnerability (06.11.2006)
 documenterdc_(at)_echo.or.id, [ECHO_ADV_58_2006]Cyberfolio <=2.0 RC1 $av Remote File Inclusion Vulnerability (06.11.2006)
 documenterdc_(at)_echo.or.id, [ECHO_ADV_57_2006]Soholaunch Pro <=4.9 r36 Multiple Remote File Inclusion Vulnerability (06.11.2006)
 documentliz0_(at)_bsdmail.org, Article Script v1.*and v1.6.3 Sql injection (06.11.2006)
 documentnull_hack_(at)_yahoo.com, PHP Rapid Kill All Version File Injection (06.11.2006)
 documentmahmood ali, @cid stats v2.3 File Include (06.11.2006)
 documentPaul Bakoyiannis, MX Smartor Album Module Remote File Include (06.11.2006)
Files:Quick.Cms.Lite <= 0.3 Remote Code Execution Exploit
 Ultimate PHP Board <= 2.0 File Include Exploit
 Php Classifieds <= 7.1 (detail.php) Remote SQL Injection Exploit
 ebdrivers Simple Forum (message_details.php) SQL Injection Exploit

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod