Computer Security
[EN] securityvulns.ru no-pyccku


Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:04.02.2010
Source:
SecurityVulns ID:10584
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:BUGZILLA : Bugzilla 3.0
 MOODLE : Moodle 1.8
 MOODLE : moodle 1.9
 MOZILLA : Bugzilla 3.2
 DIGGERSOLUTIONS : Intranet Open Source 2.7
 PLATFORMASSOCIAT : tinypug 0.9
 MOZILLA : Bugzilla 3.4
 BUGZILLA : Bugzilla 3.5
 DRUPAL : MP3 Player 1.0 module for Drupal
 TAVANMAND : Tavanmand Portal 1.1
 OCSINVENTORYNG : OCS Inventory NG 1.3
 TRACGIT : trac-git 0.0
CVE:CVE-2010-0394 (PyGIT.py in the Trac Git plugin (trac-git) before 0.0.20080710-3+lenny1 and before 0.0.20090320-1 on Debian GNU/Linux, when enabled in Trac, allows remote attackers to execute arbitrary commands via shell metacharacters in a crafted HTTP query that is used to generate a certain git command.)
 CVE-2009-4305 (SQL injection vulnerability in the SCORM module in Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 allows remote authenticated users to execute arbitrary SQL commands via vectors related to an "escaping issue when processing AICC CRS file (Course_Title).")
 CVE-2009-4303 (Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 stores (1) password hashes and (2) unspecified "secrets" in backup files, which might allow attackers to obtain sensitive information.)
 CVE-2009-4302 (login/index_form.html in Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 links to an index page on the HTTP port even when the page is served from an HTTPS port, which might cause login credentials to be sent in cleartext, even when SSL is intended, and allows remote attackers to obtain these credentials by sniffing.)
 CVE-2009-4301 (mnet/lib.php in Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7, when MNET services are enabled, does not properly check permissions, which allows remote authenticated servers to execute arbitrary MNET functions.)
 CVE-2009-4299 (mod/glossary/showentry.php in the Glossary module for Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 does not properly perform access control, which allows attackers to read unauthorized Glossary entries via unknown vectors.)
 CVE-2009-4298 (The LAMS module (mod/lams) for Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 stores the (1) username, (2) firstname, and (3) lastname fields within the user table, which allows attackers to obtain user account information via unknown vectors.)
 CVE-2009-4297 (Multiple cross-site request forgery (CSRF) vulnerabilities in Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors.)
Original documentdocumentDEBIAN, [SECURITY] [DSA-1990-1] New trac-git packages fix code execution (04.02.2010)
 documentDEBIAN, [SECURITY] [DSA-1990-2] New trac-git package fixes regression (04.02.2010)
 documentNicolas DEROUET, OCS Inventory NG Server <= 1.3b3 (login) Remote Authentication Bypass (04.02.2010)
 documentProCheckUp Research, PR09-19: Cross-Site Scripting (XSS) on CommonSpot server (04.02.2010)
 documentinfo_(at)_securitylab.ir, Tavanmand Portal (fckeditor) Remote Arbitrary File Upload Vulnerability (04.02.2010)
 documentinfo_(at)_securitylab.ir, eWebeditor ASP Version Multiple Vulnerabilities (04.02.2010)
 documentMarty Barbella, XSS vulnerability in Drupal's MP3 Player contributed module (version 6.x-1.0-beta1) (04.02.2010)
 documentmd.r00t.defacer_(at)_gmail.com, Joomla (com_gambling) SQL Injection Vulnerabilities (04.02.2010)
 documentBUGZILLA, Security Advisory for Bugzilla 3.0.10, 3.2.5, 3.4.4, and 3.5.2 (04.02.2010)
 documentinfo_(at)_securitylab.ir, RaakCms Multiple Vulnerabilities (04.02.2010)
 documentadmin_(at)_bugreport.ir, Tinypug Multiple Vulnerabilities (04.02.2010)
 documentben_(at)_visionsource.org, OpenCart CSRF Vulnerability (04.02.2010)
 documentDEBIAN, [SECURITY] [DSA 1986-1] New moodle packages fix several vulnerabilities (04.02.2010)
 documentInj3ct0r.com, show data sources ite config exploit (04.02.2010)
 documentInj3ct0r.com, Cpanel Bypass Safe mode [ extract tar.gz by Cpanel ] (04.02.2010)
 documentMustLive, Vulnerabilities in Hydra Engine (04.02.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod