Computer Security

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:29.12.2009
Source:BUGTRAQ
SecurityVulns ID:10492
Type:remote
Level:5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:JOOMLA : Joomulus 2.0
 DRBENHUR : DBHcms 1.1
 LIVEZILLA : LiveZilla 3.1
CVE:CVE-2009-4422 (Multiple cross-site scripting (XSS) vulnerabilities in the GetURLArguments function in jpgraph.php in Aditus Consulting JpGraph 3.0.6 allow remote attackers to inject arbitrary web script or HTML via a key to csim_in_html_ex1.php, and other unspecified vectors.)
Original documentdocumentMANDRIVA, [ MDVSA-2009:340 ] jpgraph (29.12.2009)
 documentadvisories_(at)_intern0t.net, [InterN0T] LiveZilla - XSS Vulnerability (29.12.2009)
 documentinfo_(at)_securitylab.ir, DBHCMS Web Content Management System v1.1.4 RFI Vulnerability (29.12.2009)
 documentfaghani_(at)_nsec.ir, Sheedravi CMS SQL Injection Vulnerability (29.12.2009)
 documentMustLive, Vulnerability in Joomulus for Joomla (29.12.2009)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server