Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:		19.11.2008
Source:
SecurityVulns ID:		9436
Type:		remote
Level:		5/10
Description:		PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Webglimpse: crossite scripting. CimWebCenter: crossite scripting.

Affected:		VBULLETIN : vBulletin 3.7
		PLUKCMS : Pluck CMS 4.5
		CIMWEBCENTER : CimWebCenter 4.0
		WEBGLIMPSE : Webglimpse 2.18

Original document		Janek Vind, [waraxe-2008-SA#068] - Sql Injection in vBulletin 3.7.3.pl1 (19.11.2008)
		Janek Vind, [waraxe-2008-SA#069] - Multiple Sql Injection in vBulletin 3.7.4 (19.11.2008)
		Janek Vind, [waraxe-2008-SA#069] - Multiple Sql Injection in vBulletin 3.7.4 (19.11.2008)
		md.r00t.defacer_(at)_gmail.com, Kimson cms cross site scripting vulnerability (19.11.2008)
		Digital Security Research Group [DSecRG], [DSECRG-08-039] Local File Include Vulnerability in Pluck CMS 4.5.3 (19.11.2008)
		MustLive, Cross-Site Scripting vulnerabilities in CimWebCenter (19.11.2008)
		MustLive, Cross-Site Scripting vulnerabilities in Webglimpse (19.11.2008)

Discuss:

Read or add your comments to this news (0 comments)