Related information Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) The Rat CMS (SQL/XSS) Multiple Remote Vulnerabilities Multiple vulnerabilities in TietoEnator's Procapita school administration system, at least version "842 Procapita 840SP1" [ECHO_ADV_99$2008] Relative Real Estate Systems <= 3.0 (listing_id) Sql Injection Vulnerability RSS-aggregator (display) Remote File Inclusion Vulnerability From:MustLive <mustlive_(at)_websecurity.com.ua> Date:26.06.2008Subject:Cross-Site Scripting vulnerabilities in PHP-NukeЗдравствуйте 3APA3A! Сообщаю вам о найденных мною Cross-Site Scripting уязвимостях в PHP-Nuke. XSS: POST запрос на странице http://site/modules.php?name=Your_Account&op=new_user "><script src=http://site/script.js> В полях: gfx_check и random_num. Эксплоит: http://websecurity.com.ua/uploads/2008/PHP-Nuke%20CAPTCHA%20bypass%20 +%20XSS.html Уязвимы версии PHP-Nuke 7.7 и 8.1. Дополнительная информация о данных уязвимостях у меня на сайте: http://websecurity.com.ua/2119/ Best wishes & regards, MustLive Администратор сайта http://websecurity.com.ua
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
The Rat CMS (SQL/XSS) Multiple Remote Vulnerabilities
Multiple vulnerabilities in TietoEnator's Procapita school administration system, at least version "842 Procapita 840SP1"
[ECHO_ADV_99$2008] Relative Real Estate Systems <= 3.0 (listing_id) Sql Injection Vulnerability
RSS-aggregator (display) Remote File Inclusion Vulnerability
