Computer Security
[EN] securityvulns.ru no-pyccku


Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:15.01.2008
Source:
SecurityVulns ID:8565
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. RiSearch PHP: crossite scripting
Affected:GFORGE : gforge 3.1
 GFORGE : gforge 4.5
 GFORGE : gforge 4.6
CVE:CVE-2008-0173 (SQL injection vulnerability in Gforge 4.6.99 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified parameters, related to RSS exports.)
Original documentdocumentSmasher_(at)_ciucciamiilcalzino.it, Garment Center (index.cgi) Local File Inclusion (15.01.2008)
 documentJose Luis Góngora Fernández, Binn SBuilder (nid) Remote Blind Sql Injection Vulnerabily (15.01.2008)
 documentDEBIAN, [SECURITY] [DSA 1459-1] New gforge packages fix SQL injection (15.01.2008)
 documentMustLive, Cross-Site Scripting vulnerability in RiSearch PHP (15.01.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod