Computer Security
[EN] securityvulns.ru no-pyccku


Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:26.06.2007
Source:
SecurityVulns ID:7852
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:CALENDARIX : Calendarix 0.7
 EQDKP : eqDKP 1.3
 PHPTRAFFICA : phpTrafficA 1.4
 POWERPHLOGGER : Power Phlogger 2.2
 PLUXML : Pluxml 0.3
 MYNEWS : MyNews 0.10
CVE:CVE-2007-3259 (Calendarix 0.7.20070307 allows remote attackers to obtain sensitive information via (1) an invalid month[] parameter to calendar.php, (2) an invalid catview[] parameter to cal_week.php in a week operation, (3) an invalid ycyear[] parameter to yearcal.php, or (4) a direct request to cal_functions.inc.php, which reveals the installation path in various error messages.)
 CVE-2007-3258 (calendar.php in Calendarix 0.7.20070307 allows remote attackers to obtain sensitive information via large values to the (1) year and (2) month parameters, which causes negative values to be passed to the mktime library call, and reveals the installation path in the error message.)
 CVE-2007-3183 (Multiple SQL injection vulnerabilities in Calendarix 0.7.20070307, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) month and (2) year parameters to calendar.php and the (3) search string to cal_search.php.)
 CVE-2007-3182 (Multiple cross-site scripting (XSS) vulnerabilities in Calendarix 0.7.20070307, when register_globals is enabled, allow remote attackers to inject arbitrary web script or HTML via the (1) year and (2) month parameters to calendar.php, and the (3) leftfooter parameter to cal_footer.inc.php. NOTE: the ycyear parameter to yearcal.php is already covered by CVE-2006-1835.)
 CVE-2007-2520 (SQL injection vulnerability in admin.php in MyNews 0.10, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the authacc cookie.)
Original documentdocumentkefka, [Full-disclosure] Overwrite variables eqDKP 1.3.2d and prior (login.php) (26.06.2007)
 documentlaurent gaffie, phpTrafficA < 1.4.2 (26.06.2007)
 documentsecurityresearch_(at)_netvigilance.com, Calendarix version 0.7. 20070307 Multiple Path Disclosure Vulnerabilities (26.06.2007)
 documentsecurityresearch_(at)_netvigilance.com, MyNews version 0.10 SQL Injection Vulnerability (26.06.2007)
 documentsecurityresearch_(at)_netvigilance.com, Calendarix version 0.7. 20070307 Multiple XSS Attacks (26.06.2007)
 documentsecurityresearch_(at)_netvigilance.com, Calendarix version 0.7. 20070307 Multiple SQL Injection Vulnerabilities (26.06.2007)
 documentsecurityresearch_(at)_netvigilance.com, Calendarix version 0.7. 20070307 Multiple Path Disclosure Vulnerabilities (26.06.2007)
 documentgmdarkfig_(at)_gmail.com, Pluxml 0.3.1 Remote Code Execution Exploit (26.06.2007)
 documentdarkz.gsa_(at)_gmail.com, POWER PHLOGGER v.2.2.5 (username) SQL Injection (26.06.2007)
Files:Pluxml 0.3.1 Remote Code Execution Exploit

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod