Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:		22.07.2007
Source:
SecurityVulns ID:		7961
Type:		remote
Level:		5/10
Description:		PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected:		USEBB : UseBB 1.0
		JBLOG : JBlog 1.0
		VHCS : Virtual Hosting Control System 2.4

Original document		Advisory_(at)_Aria-Security.net, [MajorSecurity Advisory #51]Virtual Hosting Control System - Session fixation Issue (22.07.2007)
		Advisory_(at)_Aria-Security.net, [Aria-Security] Munch Pro Remote Login ByPass (22.07.2007)
		Advisory_(at)_Aria-Security.net, [Aria-Security] Property Pro Remote Login ByPass (22.07.2007)
		s4mi_(at)_LinuxMail.org, JBlog 1.0 Creat Admin exploit, xss, Cookie Manipulation (22.07.2007)
		s4mi_(at)_LinuxMail.org, UseBB 1.0.x Cross Site Scripting (XSS) (22.07.2007)
		starext_(at)_msn.com, Elite Forum Full HTML ENject versin 1.0.0.0 (22.07.2007)

Files:		JBlog version: 1.0 cookies Manipulation + Cross Site Scripting
		Elite Forum FULL HTML ENjector
Discuss:		Read or add your comments to this news (0 comments)