Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:
22.05.2008
Source:
BUGTRAQ
SecurityVulns ID:
9013
Type:
remote
Level:
5
/10
Description:
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:
MANTISBT
:
Mantis Bug Tracker 1.1
BMFORUM
:
BMForum 5.6
PHPFREEFORUM
:
PHPFreeForum 1.0
PHPSQLITECMS
:
phpSQLiteCMS 1
WWWFILESHAREPRO
:
www file share pro 5.30
CVE:
CVE-2008-2276
(Cross-site request forgery (CSRF) vulnerability in Mantis 1.1.1 allows remote attackers to create new administrative users via user_create.)
Original document
output_(at)_email.it
,
www file share pro 5.30 insecure multiple
(
22.05.2008
)
tan_prathan_(at)_hotmail.com
,
phpSQLiteCMS Multiple Remote XSS Vulnerability
(
22.05.2008
)
tan_prathan_(at)_hotmail.com
,
Exteen Blog XSS Remote Cookie Disclosure Exploit
(
22.05.2008
)
tan_prathan_(at)_hotmail.com
,
PHPFreeForum <= 1.0 RC2 Remote XSS Vulnerability
(
22.05.2008
)
tan_prathan_(at)_hotmail.com
,
BMForum Remote 5.6 Miltiple XSS Vulnerability
(
22.05.2008
)
ascii
,
Mantis Bug Tracker 1.1.1 Multiple Vulnerabilities
(
22.05.2008
)
Discuss:
Read or add your comments to this news (0 comments)
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Enter your search terms
Web
securityvulns.com
Submit search form
