Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:
24.03.2008
Source:
SecurityVulns ID:
8829
Type:
remote
Level:
5
/10
Description:
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Claroline: crossite scripting.
Affected:
POWERSCRIPTS
:
PowerClan 1.14
CLAROLINE
:
Claroline 1.8
POWERSCRIPTS
:
PowerBook 1.21
POWERSCRIPTS
:
PowerPHPBoard 1.00
SERENDIPITY
:
serendipity 1.3
CVE:
CVE-2008-0124
CVE-2007-6205
(Cross-site scripting (XSS) vulnerability in the remote RSS sidebar plugin (serendipity_plugin_remoterss) in S9Y Serendipity before 1.2.1 allows remote attackers to inject arbitrary web script or HTML via a link in an RSS feed.)
Original document
DEBIAN
,
[SECURITY] [DSA 1528-1] New serendipity packages fix cross site scripting
(
24.03.2008
)
Zero-X ScriptKiddy
,
HIS-webshop is vulnerable against Directory-Traversal (www.shoppark.de)
(
24.03.2008
)
Digital Security Research Group [DSecRG]
,
[DSECRG-08-020] RFI-LFI in PowerClan 1.14a
(
24.03.2008
)
Digital Security Research Group [DSecRG]
,
[DSECRG-08-021] Multiple LFI in PowerPHPBoard 1.00b
(
24.03.2008
)
Digital Security Research Group [DSecRG]
,
[DSECRG-08-019] LFI in PowerBook 1.21
(
24.03.2008
)
MustLive
,
Vulnerability in Claroline
(
24.03.2008
)
Discuss:
Read or add your comments to this news (0 comments)
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Enter your search terms
Web
securityvulns.com
Submit search form
