Computer Security
[EN] securityvulns.ru no-pyccku


Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
updated since 18.12.2007
Published:18.12.2007
Source:
SecurityVulns ID:8458
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. WP-ContactForm: Crossite scripting.
Affected:MAMBO : Mambo 4.6
 NEURONNEWS : neuron news 1.0
 WORDPRESS : WP-ContactForm 1.5
 SURGEMAIL : SurgeMail 0.38
 UBERUPLOADER : Uber Uploader 5.3
 PHPSECURITYFRAME : PHP Security Framework Beta 1
Original documentdocumentbeenudel1986_(at)_gmail.com, Multiple xss in mambo 4.6.2 (18.12.2007)
 documentgmdarkfig_(at)_gmail.com, PHP Security Framework: Vuln and Security Bypass (18.12.2007)
 documentJose Luis Góngora Fernández, Uber Uploader <= 5.3.6 Remote File Upload Vulnerability (18.12.2007)
 documentretrog_(at)_alice.donotspam.it, SurgeMail v.38k4 webmail Host header crash (18.12.2007)
 documenthadihadi_zedehal_2006_(at)_yahoo.com, neuron news1.0 Multiple Remote Vulnerabilities (sql injection/xss) (18.12.2007)
 documentMustLive, XSS vulnerabilities in WP-ContactForm (18.12.2007)
Files:SurgeMail v.38k4 webmail Host header denial of service exploit

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod