Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:		25.03.2008
Source:		BUGTRAQ
SecurityVulns ID:		8830
Type:		remote
Level:		5/10
Description:		PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected:		AERIES : Aeries Browser Interface 3.8
		ALKACON : OpenCms 7.0
		E107 : My_Gallery 2.3 plugin for e107
		CUTEFLOWBIN : Cuteflow Bin 1.5
		BOLINOS : BolinOS 4.6

Original document		Digital Security Research Group [DSecRG], [DSECRG-08-022] Multiple Security Vulnerabilities in Bolinos 4.6.1 (25.03.2008)
		r57blg_(at)_gmail.com, Cuteflow Bin v1.5.0 Local File Inclusion Vuln (25.03.2008)
		Jerome ATHIAS, e107 My_Gallery Plugin Arbitrary File Download Vulnerability (25.03.2008)
		arsalan1991_(at)_gmail.com, aeries browser interface(ABI) 3.8.3.14 Remote SQL Injection (25.03.2008)
		Dj_ReMix_20_(at)_hotmail.com, EfesTech E-Kontr (id) Remote SQL INJECTION (25.03.2008)
		nnposter_(at)_disclosed.not, Alkacon OpenCms users_list.jsp searchfilter XSS (25.03.2008)

Discuss:

Read or add your comments to this news (0 comments)