Computer Security
[EN] securityvulns.ru no-pyccku


Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
updated since 29.11.2007
Published:29.11.2007
Source:
SecurityVulns ID:8384
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Captcha! wordpress plugin: CAPTCHA protection bypass and XSS.
Affected:PHPKIT : PHPKIT 1.6
 LIFERAY : Liferay Enterprise Portal 4.3
 PHPSLIDESHOW : PHPSlideshow 0.9
 GEKKOWARE : Gekko 0.8
Original documentdocumentJose Luis Góngora Fernández, Gekko <=0.8.2 (temp directory) Path Disclosure (29.11.2007)
 documentmorin.josh_(at)_gmail.com, PHPSlideShow XSS Update (29.11.2007)
 documentmorin.josh_(at)_gmail.com, Liferay Enterprise Portal multiple XSS (29.11.2007)
 documentJose Luis Góngora Fernández, PHPkit 1.6.1 (include.php?path=) Remote File Inclusion (29.11.2007)
 documentkingoftheworld92_(at)_fastwebnet.it, Eurologon CMS Multiple SQL Injection (29.11.2007)
 documentkingoftheworld92_(at)_fastwebnet.it, Eurologon CMS Db credentials disclosure / files download (29.11.2007)
 documentMustLive, MoBiC-26 Bonus: XSS in Captcha! (29.11.2007)
 documentMustLive, Captcha! CAPTCHA bypass (29.11.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod