Computer Security

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:13.01.2009
Source:
SecurityVulns ID:9574
Type:remote
Level:5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. FCKeditor: crossite scripting, information leak. WOSendNews: crossite scripting, information leak.
Affected:FCKEDITOR : FCKeditor 2.4
 FCKEDITOR : FCKeditor 2.3
 WOSENDNEWS : WOSendNews 1.5
 COMERSUS : Comersus Shopping Cart 6
Original documentdocumentajannhwt_(at)_hotmail.com, Comersus Shopping Cart <= v6 Remote User Pass Exploit (13.01.2009)
 documentjoseph.giron13_(at)_gmail.com, Visuplay CMS SQL injection vulnerability (13.01.2009)
 documentbilgi asd Kral, AktifKobi Kurumsal Web Sql Injection Vulnerability (Tr) (13.01.2009)
 documentMustLive, Vulnerabilities in WOSendNews (13.01.2009)
 documentMustLive, New vulnerabilities in FCKeditor (13.01.2009)
Files:Comersus Shopping Cart <= v6 Remote User Pass Exploit
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server