CGI bugs updated since 29.11.2004
Published:		04.12.2004
Source:
SecurityVulns ID:		4223
Type:		remote
Level:		5/10

Affected:		AHG : EZshopper 3.0
		ADVANCEDGUESTBOO : Advanced Guestbook 2.3
		NUKEDKLAN : Nuked-KlaN 1.4
		NUKEDKLAN : Nuked-KlaN 1.5
		S9Y : Serendipity 0.7
		INSITE : InMail
		INSITE : inShop
		HITACHI : Groupmax World Wide Web 2
		HITACHI : Groupmax World Wide Web 3
		HITACHI : Groupmax World Wide Web 5
		HITACHI : Groupmax World Wide Web 6
		VERISIGN : Payflow Link
		IB-IA : IberAgents 1.2
		IPCOP : IPCop 1.4
		BLOGTORRENT : Blogtorrent 0.8
		PHPROJEKT : PHPROJEKT 4.2
		GLOBALMOXIE : Big Medium 1.3
		APACHE : Jakarta Lucene 1.4

Original document		SECUNIA, [SA13360] Jakarta Lucene "results.jsp" Cross-Site Scripting Vulnerability (04.12.2004)
		SECURITEAM, [UNIX] AHG EZshopper loadpage.cgi Directory Traversal (.|./ Attack) (04.12.2004)
		Emile van Elen, Advanced Guestbook (04.12.2004)
		SECUNIA, [SA13358] Big Medium Unspecified Script Upload Vulnerability (02.12.2004)
		SECUNIA, [SA13357] Serendipity "searchTerm" Cross-Site Scripting Vulnerability (02.12.2004)
		SECUNIA, [SA13355] PHProjekt Unspecified "setup.php" Security Bypass Vulnerability (02.12.2004)
		Steve Kemp, Blog Torrent preview 0.8 - arbitary file download (02.12.2004)
		Kurczaba Associates advisories, [KA Advisory 0411291] IPCop Cross Site Scripting Vulnerability in "proxylog.dat" (02.12.2004)
		SECUNIA, [SA13330] IberAgents Clear Text User Credential Disclosure (30.11.2004)
		M. Shirk, [SHK-001]Payflow Link Default Config may lead to Hidden Field Modification (30.11.2004)
		SECUNIA, [SA13321] Groupmax World Wide Web Cross-Site Scripting and Directory Traversal (29.11.2004)
		SECUNIA, [SA13188] Insite InMail / inShop Cross-Site Scripting Vulnerabilities (29.11.2004)
		SECUNIA, [SA13329] Nuked-Klan "Links" Module Script Insertion Vulnerability (29.11.2004)

Discuss:

Read or add your comments to this news (0 comments)