Computer Security
[EN] securityvulns.ru no-pyccku


Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:28.10.2007
Source:
SecurityVulns ID:8297
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. PHP-Nuke: directory traversal in autohtml.php and autohtml0.php allows to obtain password hashes. By requesting non-existant file it's possible to disclosure installation directory.
Affected:PHPNUK : PHP-Nuke 8.1
 MICROLOGIN : Micro Login System 1.0
Original documentdocumentGuns_(at)_0x90.com.ar, Micro Login System v1.0 (userpwd.txt) Password Disclosure Vulnerability (28.10.2007)
 documentMustLive, Local File Inclusion and Information Leakage vulnerabilities in PHP-Nuke (28.10.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod