Computer Security
[EN] no-pyccku

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
updated since 29.11.2007
SecurityVulns ID:8384
Threat Level:
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Captcha! wordpress plugin: CAPTCHA protection bypass and XSS.
Affected:PHPKIT : PHPKIT 1.6
 LIFERAY : Liferay Enterprise Portal 4.3
 PHPSLIDESHOW : PHPSlideshow 0.9
 GEKKOWARE : Gekko 0.8
Original documentdocumentJose Luis Góngora Fernández, Gekko <=0.8.2 (temp directory) Path Disclosure (29.11.2007)
 documentmorin.josh_(at), PHPSlideShow XSS Update (29.11.2007)
 documentmorin.josh_(at), Liferay Enterprise Portal multiple XSS (29.11.2007)
 documentJose Luis Góngora Fernández, PHPkit 1.6.1 (include.php?path=) Remote File Inclusion (29.11.2007)
 documentkingoftheworld92_(at), Eurologon CMS Multiple SQL Injection (29.11.2007)
 documentkingoftheworld92_(at), Eurologon CMS Db credentials disclosure / files download (29.11.2007)
 documentMustLive, MoBiC-26 Bonus: XSS in Captcha! (29.11.2007)
 documentMustLive, Captcha! CAPTCHA bypass (29.11.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod