Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:		17.01.2008
Source:		BUGTRAQ
SecurityVulns ID:		8576
Type:		remote
Level:		5/10
Description:		PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected:		MYBB : MyBB 1.2
		ARIA : aria 0.99
		BLOGCMS : blogcms 4.2
		MCGUESTBOOG : mcGuestbook 1.2
		GRADMAN : Gradman 0.1

Original document		HACKERS PAL, PHPEchoCMS Multible remote vulnerabilitis (17.01.2008)
		Smasher_(at)_ciucciamiilcalzino.it, JoomlaFlash Component Multiple Remote File Inclusion (17.01.2008)
		Jose Luis Góngora Fernández, Gradman <= 0.1.3 (agregar_info.php?tabla=) Local File Inclusion Exploit (17.01.2008)
		Janek Vind, [waraxe-2008-SA#061] - Remote Code Execution in MyBB 1.2.10 (17.01.2008)
		Janek Vind, [waraxe-2008-SA#062] - Multiple Sql Injections in MyBB 1.2.10 (17.01.2008)
		gokhankaya_(at)_hotmail.com, mcGuestbook v1.2 Remote File Inc. (17.01.2008)
		no-reply_(at)_aria-security.net, [Aria-Security.Net] Real Estate Web SQL Injection (17.01.2008)
		Digital Security Research Group [DSecRG], [DSECRG-08-002] Local File Include in arias 0.99-6 (17.01.2008)
		no-reply_(at)_aria-security.net, cPanel Hosting Manager (dohtaccess.html) (17.01.2008)
		Jose Luis Góngora Fernández, RichStrong CMS (showproduct.asp?cat=) Remote SQL Injection Exploit (17.01.2008)
		Digital Security Research Group [DSecRG], [DSECRG-08-003] blogcms 4.2.1b Multiple Security Vulnerabilities (17.01.2008)

Files:		RichStrong CMS - Remote SQL Injection Exploit
Discuss:		Read or add your comments to this news (0 comments)