Computer Security
[EN] securityvulns.ru no-pyccku


Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:02.11.2007
Source:
SecurityVulns ID:8312
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Ripe CMS: crossite scripting in http://site/contact-us with Name, address, Subject fields.
Affected:SBLOG : sBlog 0.7
 RIPECMS : Ripe CMS Lite 2.0
 SYNERGISER : Synergiser 1.2
 SCRIBE : scribe 0.2
Original documentdocumentkingoftheworld92_(at)_fastwebnet.it, Scribe <= 2.0 Remote PHP Code Execution (02.11.2007)
 documentkingoftheworld92_(at)_fastwebnet.it, Synergiser <= 1.2 RC1 Local File Inclusion & Full path disclosure (02.11.2007)
 documentGuns_(at)_0x90.com.ar, sBlog 0.7.3 Beta Cross Site Request Forgery (02.11.2007)
 documentMustLive, Vulnerabilities in Ripe CMS (02.11.2007)
Files:Exploits sBlog Cross Site Request Forgery Vulnerability

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod