Forum - Computer security: vulnerabilities and exploits database

[EN] securityvulns.ru
no-pyccku

PHP, ASP, CGI web applications security vulnerabilities
updated since 22.03.2005
Published: 26.03.2005
Source:
SecurityVulns ID: 4596
Type: remote
Level: 5/10
Description: PHP inclusions, SQL injections, directory traversals, crossite scripting, etc.

Affected: INVISION : Invision Power Board 2.0
PHORUM : Phorum 5.0
COOLFORUM : CoolForum 0.8
BETAPRACTICE : BetaParticle 3.0
KAYAKO : eSupport 2.3
CZARNEWS : CzarNews 1.13
TRG : TRG News 3.0
BETAPRACTICE : betaparticle 4.0
FILEZILLA : Filezilla 0.9
ARTICLELIVE : ArticleLive 2005
VORTEXPORTAL : VortexPortal
PHPSYSINFO : phpSysInfo 2.3
PHPBB : Topic Calendar 1.0
DOUBLECHOCOLATTE : Double Choco Latte 0.9
DREAM4 : Koobi CMS 4.2
PHPMYDIRECTORY : phpMyDirectory 10.1
DIGITALHIVE : DigitalHive 2.0
NUKEBOOKMARKS : NukeBookmarks 0.6

Original document Astharot, [Full-disclosure] ZH2005-03SA -- multiple vulnerabilities in NukeBookmarks .6 (26.03.2005)

SECUNIA, [SA14702] DigitalHive Two Cross-Site Scripting Vulnerabilities (25.03.2005)

mircia mircia, phpMyDirectory 10.1.3-rel cross site scripting (25.03.2005)

mircia mircia, Multipe flaws in Koobi CMS 4.2.3 (25.03.2005)

document SECUNIA, [SA14688] Double Choco Latte Cross-Site Scripting and PHP Code Execution (24.03.2005)

SECUNIA, [SA14679] MercuryBoard "title" Script Insertion Vulnerability (24.03.2005)

Woody, [Full-disclosure] Invision Iframe Bug (24.03.2005)

Alberto Trivero, Multiple vulnerabilities in Topic Calendar 1.0.1 for phpBB (24.03.2005)

document Maksymilian Arciemowicz, [SECURITYREASON.COM] phpSysInfo 2.3 Multiple vulnerabilities cXIb8O3.11 (24.03.2005)

mircia mircia, Interspire ArticleLive 2005 (php version) is vulnerable to XSS (24.03.2005)

SECUNIA, [SA14664] FileZilla Server Denial of Service Vulnerabilities (22.03.2005)

document SECUNIA, [SA14668] betaparticle blog Exposure of Sensitive Information and Security Bypass (22.03.2005)

SECUNIA, [SA14669] TRG News Script "dir" File Inclusion Vulnerability (22.03.2005)

SECUNIA, [SA14670] CzarNews "tpath" File Inclusion Vulnerability (22.03.2005)

Alexander Anisimov, [ Positive Technologies #SA] Phorum "location" HTTP Response Splitting Vulnerability (22.03.2005)

document JeiAr, Kayako eSupport Cross Site Scripting (22.03.2005)

farhad koosha, 2 vulnerabilities in BetaParticle (22.03.2005)

HaCkZaTaN, -==CoolForum Path Disclosure & Possible SQL Injection==- (22.03.2005)

Discuss: Read or add your comments to this news (0 comments)

Show		Threads
		Messages


Login:*		(Register)
Password:*
(private)	To:
(reply)	Subject:*
Text:

Main Forum (Eng) General security questions not appropriate for another forums.	3proxy Forum (Eng) All 3proxy question must be posted to this forum.	Bugs, Vulnerabilities, PoCs and Exploits (Eng) All vulnerability related questions, vulnerability digging and exploit creation.	Windows programming and administration (Eng) Administering Windows and application development.	Unix programming and administation (Eng) Administering Unix and application development.	Test forum Please post all test messages here. All test messages from different forums will be deteted.
Main Forum (Rus)	3proxy Forum (Rus)	Bugs, Vulnerabilities, PoCs and Exploits (Rus)	Windows programming and administration (Rus)	Unix programming and administation (Rus)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin