Computer Security
[EN] securityvulns.ru no-pyccku


Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:26.01.2010
Source:
SecurityVulns ID:10551
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:CKEDITOR : CKEditor 3.0
 SILVERSTRIPE : SilverStripe 2.3
 PUBLIQUE : Publique! 2.3
CVE:CVE-2009-4402 (The default configuration of SQL-Ledger 2.8.24 allows remote attackers to perform unspecified administrative operations by providing an arbitrary password to the admin interface.)
Original documentdocumentChris Travers, FWD: LedgerSMB Security Advisory: Multiple Vulnerabilities (26.01.2010)
 documentChristophe dlf, Publique! CMS SQL Injection Vulnerabilities (26.01.2010)
 documentMoritz Naumann, Silverstripe <= v2.3.4: two XSS vulnerabilities (26.01.2010)
 documentMustLive, New vulnerability in CKEditor (26.01.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod