Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:
25.11.2009
Source:
SecurityVulns ID:
10418
Type:
remote
Level:
5
/10
Description:
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:
E107
:
e107 0.7
INVISION
:
Invision Power Board 2.3
OPENX
:
OpenX 2.8
GFORGE
:
gforge 4.8
PHPMAIL
:
php-mail 1.1
CVE:
CVE-2009-3303
(Cross-site scripting (XSS) vulnerability in www/help/tracker.php in GForge 4.5.14, 4.7 rc2, and 4.8.1 allows remote attackers to inject arbitrary web script or HTML via the helpname parameter.)
Original document
DEBIAN
,
[SECURITY] [DSA 1938-1] New php-mail packages fix insufficient input sanitising
(
25.11.2009
)
DEBIAN
,
[SECURITY] [DSA 1937-1] New gforge packages fix cross-site scripting
(
25.11.2009
)
Security Vulnerability Research Team
,
[Bkis-13-2009] e107 Multiple Vulnerabilities
(
25.11.2009
)
MustLive
,
Vulnerabilities in plugins for WordPress
(
25.11.2009
)
Moritz Naumann
,
Executing arbitrary PHP code on OpenX <= 2.8.1
(
25.11.2009
)
MustLive
,
Vulnerabilities in Abton
(
25.11.2009
)
MustLive
,
New vulnerabilities in Invision Power Board
(
25.11.2009
)
Discuss:
Read or add your comments to this news (0 comments)
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Nizhny Novgorod
Enter your search terms
Web
securityvulns.com
Submit search form
test server
