|
| Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) | | Published: |  | 20.02.2008 | | Source: |  | | | SecurityVulns ID: |  | 8704 | | Type: |  | remote | | Level: |  | 5/10 | | Description: |  | PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Power Phlogger: multiple XSS. |
| Affected: |  | DOKEOS : Dokeos 1.8 | | | | SPYCE : Spyce - Python Server Pages 2.1 | | | | JINZORA : Jinzora Media Jukebox 2.7 | | | | WOLTLAB : WoltLab Burning Board 3.0 | | | | SMARTERTOOLS : SmarterMail Enterprise 4.3 | | | | BEA : Plumtree Foundation portal 6.0 | | | | BEA : AquaLogic Interaction 6.1 |
| Original document |  | research_(at)_procheckup.com, PR06-12: XSS on BEA Plumtree Foundation and AquaLogic Interaction portals (20.02.2008) |
| | | jplopezy_(at)_gmail.com, SmarterMail Enterprise 4.3 - malformed mail XSS (20.02.2008) |
| | | nbbn_(at)_gmx.net, WoltLab Burning Board 3.0.3 PL1 SQL-Injection Vulnerability (20.02.2008) |
| | | Digital Security Research Group [DSecRG], bugtraq@securityfocus.com, vuln@secunia.com, packet@packetstormsecurity.org (20.02.2008) |
| | | research_(at)_procheckup.com, PR08-01: Several XSS, a cross-domain redirect and a webroot disclosure on Spyce - Python Server Pages (PSP) (20.02.2008) |
| | | hackturkiye.hackturkiye_(at)_gmail.com, PHP-Nuke Module Web_Links SQL Injection(cid) (20.02.2008) |
| | | hackturkiye.hackturkiye_(at)_gmail.com, XOOPS Module eEmpregos SQL Injection(cid) (20.02.2008) |
| | | hackturkiye.hackturkiye_(at)_gmail.com, XOOPS Module wflinks SQL Injection(cid) (20.02.2008) |
| | | hackturkiye.hackturkiye_(at)_gmail.com, XOOPS Module classifieds SQL Injection(cid) (20.02.2008) |
| | | hackturkiye.hackturkiye_(at)_gmail.com, joomla SQL Injection(com_magazine) (20.02.2008) |
| | | hackturkiye.hackturkiye_(at)_gmail.com, XOOPS Module seminars SQL Injection (20.02.2008) |
| | | hackturkiye.hackturkiye_(at)_gmail.com, XOOPS Module badliege SQL Injection (20.02.2008) |
| | | hackturkiye.hackturkiye_(at)_gmail.com, XOOPS Module events SQL Injection (20.02.2008) |
| | | hackturkiye.hackturkiye_(at)_gmail.com, XOOPS Module vacatures SQL Injection (20.02.2008) |
| | | hackturkiye.hackturkiye_(at)_gmail.com, joomla SQL Injection(com_foevpartners) (20.02.2008) |
| | | hackturkiye.hackturkiye_(at)_gmail.com, joomla SQL Injection(com_genealogy) (20.02.2008) |
| | | hackturkiye.hackturkiye_(at)_gmail.com, joomla SQL Injection(com_listoffreeads) (20.02.2008) |
| | | hackturkiye.hackturkiye_(at)_gmail.com, joomla SQL Injection(com_facileforms) (20.02.2008) |
| | | hackturkiye.hackturkiye_(at)_gmail.com, XOOPS Module myTopics-print SQL Injection(articleid) (20.02.2008) |
| | | hackturkiye.hackturkiye_(at)_gmail.com, joomla SQL Injection(com_geoboerse) (20.02.2008) |
| | | hackturkiye.hackturkiye_(at)_gmail.com, XOOPS Module wflinks SQL Injection(cid) (20.02.2008) |
| | | hackturkiye.hackturkiye_(at)_gmail.com, joomla SQL Injection(com_detail) (20.02.2008) |
| | | hackturkiye.hackturkiye_(at)_gmail.com, joomla SQL Injection(com_team (20.02.2008) |
| | | hackturkiye.hackturkiye_(at)_gmail.com, joomla SQL Injection(com_formtool) (20.02.2008) |
| | | hackturkiye.hackturkiye_(at)_gmail.com, joomla SQL Injection(com_iigcatalog) (20.02.2008) |
| | | hackturkiye.hackturkiye_(at)_gmail.com, XOOPS Module section SQL Injection(articleid) (20.02.2008) |
| | | Digital Security Research Group [DSecRG], [DSECRG-08-015] Multiple Security Vulnerabilities in Dokeos 1.8.4 (20.02.2008) |
|
|
|
|
|
