Computer Security
[EN] securityvulns.ru no-pyccku


Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:15.09.2009
Source:
SecurityVulns ID:10239
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:VBULLETIN : vBulletin 3.8
 JOOMLA : Joomla Hotel Booking System III
 RAILS : rails 2.1
CVE:CVE-2009-3009 (Cross-site scripting (XSS) vulnerability in Ruby on Rails 2.x before 2.2.3, and 2.3.x before 2.3.4, allows remote attackers to inject arbitrary web script or HTML by placing malformed Unicode strings into a form helper.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 1887-1] New rails packages fix cross-site scripting (15.09.2009)
 documentsnip3r ir4Q, vBulletin 3.8.2 Denial of Service Exploit (15.09.2009)
 documentadv_(at)_e-rdc.org, [ECHO_ADV_111$2009] Joomla Hotel Booking System Component XSS/SQL Injection Multiple Vulnerability (15.09.2009)
Files:vBulletinR Version 3.8.2 D3n14l 0f S3rv1c3 Expl01t

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod