Computer Security
[EN] securityvulns.ru no-pyccku


Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:10.04.2007
Source:
SecurityVulns ID:7558
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:PHPOPENCHAT : PhpOpenChat 3.0
 TOMEX : phpGalleryScript 1.0
CVE:CVE-2007-2020 (** DISPUTED ** Unspecified vulnerability in administration.php in xodagallery allows remote attackers to execute arbitrary code via the cmd parameter. NOTE: CVE disputes this vulnerability because administration.php does not use the cmd parameter for inclusion.)
Original documentdocumentseko_(at)_se-ko.info, PhpOpenChat <= 3.0.1 (poc.php) Multiple Remote File Include Vulnerabilities (10.04.2007)
 documentz12xxa_(at)_gmail.com, phpGalleryScript 1.0 - File Inclusion Vulnerabilities (10.04.2007)
 documentthe_3dit0r_(at)_yahoo.com, xodagallery Remote Code Execution Vulnerability (10.04.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod