Forum - Computer security: vulnerabilities and exploits database

[EN] securityvulns.ru
no-pyccku

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
updated since 11.09.2006
Published: 11.09.2006
Source:
SecurityVulns ID: 6598
Type: remote
Level: 5/10
Description: PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected: PHPBB : phpBB 2.0
OPENBB : OpenBB 1.0
PUNBB : PunBB 1.2
XHP : XHP CMS 0.5
SIMPLEBOARD : SimpleBoard 1.1
VCAP : vCAP 1.9
WEBSERVERCREATOR : Web Server Creator 0.1
VIKINGBOARD : Vikingboard 0.1
PHPATM : PHP Advanced Transfer Manager 1.20
PUMA : PUMA 1.0

Original document SHANKAR, уязвимости во многих популярных движках из за некоректной работы файловых функций языка PHP (12.09.2006)

cdg393, [Full-disclosure] PHProg : Local File Inclusion + XSS + Full path disclosure (11.09.2006)

document cdg393, [Full-disclosure] KorviBlog - XSS permanent ! (11.09.2006)

ali_(at)_hackerz.ir, Multible injections and vulnerabilities in Jetbox CMS (11.09.2006)

ali_(at)_hackerz.ir, text ads xss attack (11.09.2006)

l0x3_(at)_hotmail.com, Open Bulletin Board <= 1.0.8 (root_path) File Include Vulnerability (11.09.2006)

document philipp.niedziela_(at)_gmx.de, PUMA 1.0 RC 2 (config.php) Remote File Inclusion (11.09.2006)

l0x3_(at)_hotmail.com, PHP Advanced Transfer Manager v1.20 ; Multiple Remote File Include Vulnerabilities (11.09.2006)

HACKERS PAL, MagpieRSS (a simple RSS integration tool) Full path vul (11.09.2006)

document t3rr0r1st_(at)_aria-security.net, VirtueMart (11.09.2006)

Hessam Salehi, Vikingboard 0.1b Multiple Vulnerabilities (11.09.2006)

HACKERS PAL, XHP CMS v0.5.1 Vuls Xss and Full path vuls (11.09.2006)

x0r0n_(at)_hotmail.com, Web Server Creator v0.1 (l) Remote Include Vulnerability (11.09.2006)

document stormhacker_(at)_hotmail.com, SimpleBoard Mambo Component 1.1.0 Remote File Include (11.09.2006)

SHANKAR, multiple PHP application poison NULL byte vulnerability (11.09.2006)

securma massine, vCAP calendar server Multiple vulnerabilities (11.09.2006)

Files: Exploits phpBB poison NULL byte with avatar
Exploit punBB NULL poisoning vulnerability
Discuss: Read or add your comments to this news (0 comments)

Show		Threads
		Messages


Login:*		(Register)
Password:*
(private)	To:
(reply)	Subject:*
Text:

Main Forum (Eng) General security questions not appropriate for another forums.	3proxy Forum (Eng) All 3proxy question must be posted to this forum.	Bugs, Vulnerabilities, PoCs and Exploits (Eng) All vulnerability related questions, vulnerability digging and exploit creation.	Windows programming and administration (Eng) Administering Windows and application development.	Unix programming and administation (Eng) Administering Unix and application development.	Test forum Please post all test messages here. All test messages from different forums will be deteted.
Main Forum (Rus)	3proxy Forum (Rus)	Bugs, Vulnerabilities, PoCs and Exploits (Rus)	Windows programming and administration (Rus)	Unix programming and administation (Rus)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

test server