Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:		03.02.2008
Source:		BUGTRAQ
SecurityVulns ID:		8627
Type:		remote
Level:		5/10
Description:		PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected:		EVERYTHINGDEVELO : The Everything Development System 1.0
		WORDPRESS : dmsguestbook 1.7 plugin for Wordpress
		DOMAINTRADER : Domain Trader 2.0
		PHPSHOP : PHPShop 0.8
		WORDPRESS : wp-footnotes 2.2 plugin for Wordpress

Original document		nbbn_(at)_gmx.net, Wordpress Pluging wp-footnotes 2.2 (admin_panel.php) Multiple Vulnerabilites (03.02.2008)
		theredc0ders_(at)_gmail.com, phpShop <= v 0.8.1 Remote SQL injection / Filter Bypass (03.02.2008)
		cybermilitan_(at)_hotmail.com, ITech Classifieds Multiple Remote Vulnerabilities (03.02.2008)
		cybermilitan_(at)_hotmail.com, Domain Trader v2.0 Xss Vulnerable (03.02.2008)
		nbbn_(at)_gmx.net, Wordpress Plugin dmsguestbook 1.7.0 Multiple Remote Vulnerabilities (03.02.2008)
		sub, The Everything Development System - SQL Injection (03.02.2008)
		ciucciamilcalzino_(at)_ciuccazzamelo.it, Youtube Clone Xross Site Scripting (load_message.php) (03.02.2008)

Discuss:

Read or add your comments to this news (0 comments)