Computer Security
[EN] securityvulns.ru no-pyccku


Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:17.08.2007
Source:
SecurityVulns ID:8063
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:WORDPRESS : Blix 0.9
 OLATE : Olate Download 3.4
 IBM : Rational ClearQuest 7.0
CVE:CVE-2007-4481 (Cross-site scripting (XSS) vulnerability in index.php in the (1) Blix 0.9.1 and (2) Blix 0.9.1 Rus themes for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO (PHP_SELF).)
Original documentdocumentswhite_(at)_securestate.com, IBM Rational ClearQuest Web SQL Injection Login Bypass (17.08.2007)
 documentimei, Olate Download 3.4.1 ~ admin.php ~ Admin authentication bypassing (17.08.2007)
 documentMustLive, Vulnerability in theme Blix 0.9.1 for WordPress (17.08.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod