 |
|
|
|
Web applications security vulnerabilities (PHP, ASP, CGI, Perl, etc)
updated since 07.11.2005 | | Published: |  | 11.11.2005 | | Source: |  | | | SecurityVulns ID: |  | 5429 | | Type: |  | remote | | Level: |  | 5/10 | | Description: |  | PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. |
| Original document |  | SECUNIA, [SA17537] Dev-Editor Virtual Root Directory Restriction Bypass (11.11.2005) |
| | | SECUNIA, [SA17470] OcoMon Unspecified SQL Injection Vulnerabilities (11.11.2005) |
| | | Maksymilian Arciemowicz, [Full-disclosure] phpBB 2.0.18 SQL Query problem (11.11.2005) |
| | | SECUNIA, [SA17441] phpSysInfo "register_globals" Emulation Layer Overwrite Vulnerability (11.11.2005) |
| | | SECUNIA, [SA17528] Campsite MySQL Password Exposure Mail Transfer Security Issue (11.11.2005) |
| | | SECURITEAM, [UNIX] Community Link Pro Command Execution (login.cgi) (11.11.2005) |
| | | IDEFENSE, [Full-disclosure] iDEFENSE Security Advisory 11.10.05: Tikiwiki tiki-user_preferences Command Injection Vulnerability (11.11.2005) |
| | | IDEFENSE, [Full-disclosure] iDEFENSE Security Advisory 11.10.05: Tikiwiki tiki-editpage Arbitrary File Exposure Vulnerability (11.11.2005) |
| | | retrogod_(at)_aliceposta.it, Moodle <=1.6dev blind SQL Injection (11.11.2005) |
| | | Toni Koivunen, [FS-05-01] Multiple vulnerabilities in phpAdsNew (11.11.2005) |
| | | spyburn mexico rlz, RANKBOX <= XSS vulnerability (11.11.2005) |
| | | YABB, [SA17411] YaBB Attachment Script Insertion Vulnerability (10.11.2005) |
| | | Preben Nylokken, ASPKnowledgebase vulnerable to XSS injection. (10.11.2005) |
| | | Preben Nylokken, ASPKnowledgebase vulnerable to SQL-inject (10.11.2005) |
| | | Moritz Naumann, Antville 1.1 Cross Site Scripting (10.11.2005) |
| | | Moritz Naumann, Multiple security issues in TikiWiki 1.9.x (10.11.2005) |
| | | SECUNIA, [SA17471] toendaCMS Disclosure of Sensitive Information (08.11.2005) |
| | | SECUNIA, [SA17453] Tonio Gallery "galid" SQL Injection Vulnerability (08.11.2005) |
| | | SECUNIA, [SA17440] b2evolution XML-RPC PHP Code Execution Vulnerabilities (08.11.2005) |
| | | SECUNIA, [SA17458] XMB "username" Cross-Site Scripting Vulnerability (08.11.2005) |
| | | SECURITEAM, [UNIX] MagpieRSS Remote Command Execution (08.11.2005) |
| | | Christopher Kunz, [Full-disclosure] Advisory 21/2005: Multiple vulnerabilities in PHPKIT (08.11.2005) |
| | | spyburn mexico rlz, [Full-disclosure] RANKBOX <= XSS vulnerability (08.11.2005) |
| | | tk_(at)_trapkit.de, [TKADV2005-11-001] Multiple vulnerabilities in PHPlist (08.11.2005) |
| | | bhs_team_(at)_yahoo.com, Advanced Guestbook 2.2 ( SQL Injection Exploit ) (08.11.2005) |
| | | GeekZ_(at)_WorldDefacers.net, TWiki 20030201 VIEW string remote command execution (08.11.2005) |
| | | Jerome ATHIAS, Invision Power Board 2.1 : Multiple XSS Vulnerabilities (08.11.2005) |
| | | GeekZ_(at)_WorldDefacers.net, upload phpshell in PHPFM (08.11.2005) |
| | | poizon_(at)_securityinfo.ru, Path disclosure in CuteNews <= 1.4.0 (08.11.2005) |
| | | khc_(at)_bsdmail.org, OSTE v1.0 Remote Command Exucetion (08.11.2005) |
| | | Daniel Fabian, [Full-disclosure] SEC Consult SA-20051107-0 :: toendaCMS multiple vulnerabilites (07.11.2005) |
| | | sikikmail_(at)_gmail.com, Zoomblog HTML Injection Vulnerability (07.11.2005) |
| | | Janek Vind, [waraxe-2005-SA#043] - Sql injection in Phorum 5.0.20 and earlier (07.11.2005) |
| | | benjilenoob_(at)_hotmail.com, Failles dans Invision Power Board 2.1 [xss] (07.11.2005) |
| | | s2b_(at)_hotmail.com, Xss - Html injection in XMB (07.11.2005) |
| | | Anti Matter, Invision Power Board Privilege Esaclation (2.0.1 + more) (07.11.2005) |
| | | sikikmail_(at)_gmail.com, Zoomblog <IMG> BBCode Tag JavaScript Injection Vulnerability (07.11.2005) |
| | | bhfh01_(at)_gmail.com, Sql injection in ibProArcade (07.11.2005) |
| | | Агиевич Игорь aka Shanker, Баг в vBulletin 3.x (07.11.2005) |
|
|
|
|
|
|
|
|
