Computer Security
[EN] securityvulns.ru no-pyccku


Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:12.02.2010
Source:
SecurityVulns ID:10613
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:OTRS : otrs 2.4
CVE:CVE-2010-0438 (Multiple SQL injection vulnerabilities in Kernel/System/Ticket.pm in OTRS-Core in Open Ticket Request System (OTRS) 2.1.x before 2.1.9, 2.2.x before 2.2.9, 2.3.x before 2.3.5, and 2.4.x before 2.4.7 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors.)
Original documentdocumentMustLive, Vulnerability in phpAdsNew, OpenAds and OpenX (12.02.2010)
 documentRaphael Geissert, [SECURITY] [DSA 1993-1] New otrs2 packages fix SQL injection (12.02.2010)
 documentTrustwave Advisories, Trustwave's SpiderLabs Security Advisory TWSL2010-001 (12.02.2010)
 documentMaciej Gojny, SQL injection vulnerability in apemCMS (12.02.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod