Computer Security
[EN] no-pyccku

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
updated since 18.12.2007
SecurityVulns ID:8458
Threat Level:
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. WP-ContactForm: Crossite scripting.
Affected:MAMBO : Mambo 4.6
 NEURONNEWS : neuron news 1.0
 WORDPRESS : WP-ContactForm 1.5
 SURGEMAIL : SurgeMail 0.38
 UBERUPLOADER : Uber Uploader 5.3
 PHPSECURITYFRAME : PHP Security Framework Beta 1
Original documentdocumentbeenudel1986_(at), Multiple xss in mambo 4.6.2 (18.12.2007)
 documentgmdarkfig_(at), PHP Security Framework: Vuln and Security Bypass (18.12.2007)
 documentJose Luis Góngora Fernández, Uber Uploader <= 5.3.6 Remote File Upload Vulnerability (18.12.2007)
 documentretrog_(at), SurgeMail v.38k4 webmail Host header crash (18.12.2007)
 documenthadihadi_zedehal_2006_(at), neuron news1.0 Multiple Remote Vulnerabilities (sql injection/xss) (18.12.2007)
 documentMustLive, XSS vulnerabilities in WP-ContactForm (18.12.2007)
Files:SurgeMail v.38k4 webmail Host header denial of service exploit

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod