Computer Security
[EN] securityvulns.ru no-pyccku


Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
updated since 20.01.2009
Published:20.01.2009
Source:
SecurityVulns ID:9604
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Power Phlogger: SQL injection, DoS.
Affected:POWERPHLOGGER : Power Phlogger 2.2
 53KF : 53KF Web IM
 MOINMOIN : MoinMoin 1.8
CVE:CVE-2009-0026 (Multiple cross-site scripting (XSS) vulnerabilities in Apache Jackrabbit before 1.5.2 allow remote attackers to inject arbitrary web script or HTML via the q parameter to (1) search.jsp or (2) swr.jsp.)
Original documentdocumentswhite_(at)_securestate.com, MoinMoin Wiki Engine XSS Vulnerability (20.01.2009)
 documentHACKERS PAL, Cybershade CMS Remote File include vulnerability (20.01.2009)
 documentAPACHE, [Full-disclosure] [ANNOUNCE] Apache Jackrabbit 1.5.2 released (20.01.2009)
 documentxsp, 53KF Web IM 2009 Cross-Site Scripting Vulnerabilities (20.01.2009)
 documentMustLive, SQL Injection and DoS vulnerabilities in Power Phlogger (20.01.2009)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod