Computer Security
[EN] no-pyccku

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
SecurityVulns ID:7752
Threat Level:
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:WORDPRESS : WordPress 2,0
 OTRS : Open Ticket Request System 2.0
 FLASHCHAT : FlashChat 4.79
CVE:CVE-2007-2524 (Cross-site scripting (XSS) vulnerability in in OTRS (Open Ticket Request System) 2.0.x allows remote attackers to inject arbitrary web script or HTML via the Subaction parameter in an AgentTicketMailbox Action. NOTE: DEBIAN:DSA-1299 originally used this identifier for an ipsec-tools issue, but the proper identifier for the ipsec-tools issue is CVE-2007-1841.)
Original documentdocumentBlackHawk, Inout Meta Searh engine Remote Code Execution (28.05.2007)
 documentRaeD Hasadya, RFI In Script FlashChat_v479 (28.05.2007)
 documentDEBIAN, [Full-disclosure] [SECURITY] [DSA 1298-1] New otrs2 packages fix cross-site scripting (28.05.2007)
 documentMustLive, Vulnerability in WordPress (28.05.2007)
Files:Inout Search Engine (all version) Remote Code Execution Exploit

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod