Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:		24.02.2008
Source:
SecurityVulns ID:		8717
Type:		remote
Level:		5/10
Description:		PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Scuttle: multiple XSS.

Affected:		PHPECHOCMS : phpechocms 2.0
		IBM : Quickr 8.0

Original document		goldshlager19_(at)_gmail.com, IBM Quickr 8 Calendar Xss Injection (Bypass Quickr 8.0 Xss Filter) (24.02.2008)
		DEBIAN, [SECURITY] [DSA 1502-1] New wordpress packages fix multiple vulnerabilities (24.02.2008)
		hackturkiye.hackturkiye_(at)_gmail.com, phpechocms v 2.0 rc3 RFI (24.02.2008)
		hackturkiye.hackturkiye_(at)_gmail.com, CastleCops Six Years Old (24.02.2008)
		hackturkiye.hackturkiye_(at)_gmail.com, php-nuke Quran SQL Injection(surano) (24.02.2008)
		Paul Laudanski, CastleCops Six Years Old (24.02.2008)
		hackturkiye.hackturkiye_(at)_gmail.com, aura cms lihatberita SQL Injection(id) (24.02.2008)
		hackturkiye.hackturkiye_(at)_gmail.com, php nuke gallery SQL Injection(aid) (24.02.2008)
		hackturkiye.hackturkiye_(at)_gmail.com, php-nuke Kuran SQL Injection(surano) (24.02.2008)
		hackturkiye.hackturkiye_(at)_gmail.com, php-nuke Recipes SQL Injection(recipeid) (24.02.2008)
		hackturkiye.hackturkiye_(at)_gmail.com, php nuke Sections SQL Injection(print) (24.02.2008)
		hackturkiye.hackturkiye_(at)_gmail.com, joomla com_hello_world SQL Injection(id) (24.02.2008)
		hackturkiye.hackturkiye_(at)_gmail.com, joomla com_product SQL Injection(catid) (24.02.2008)
		no-reply_(at)_aria-security.net, [Aria-Security.Net] BestWebApp Dating System SQL Injection (24.02.2008)
		MustLive, Vulnerabilities in Scuttle (24.02.2008)

Discuss:

Read or add your comments to this news (0 comments)