Computer Security
[EN] securityvulns.ru no-pyccku


Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
updated since 26.04.2010
Published:26.04.2010
Source:
SecurityVulns ID:10788
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:CACTI : cacti 0.8
 APACHE : ActiveMQ 5.3
 DLE : Переходы 6.9
 OPENFONCIER : Openfoncier 2.00
 OPENPLANNING : Openplanning 1.00
 OPENPRESSE : Openpresse 1.01
 INPORTAL : In-portal 5.0
 OPENCOMINTERNE : OpenCominterne 1.01
 OPENCOURIER : Opencourrier 2.03
 APACHE : ActiveMQ 5.4
 SMODCMS : SmodCMS 4.07
 POWEREASY : PowerEasy 2006
 MADRISH : Madirish Webmail 2.01
Original documentdocumenteidelweiss, Madirish Webmail 2.01 (basedir) RFI/LFI Vulnerability (26.04.2010)
 documentlis cker, A XSS in User_ChkLogin.asp of PowerEasy 2006 (26.04.2010)
 documenteidelweiss, SmodCMS 'config.php' Arbitrary File Upload Vulnerability (26.04.2010)
 documenteidelweiss, phpegasus 'config.php' Arbitrary File Upload Vulnerability (26.04.2010)
 documentDEBIAN, [SECURITY] [DSA 2039-1] New cacti packages fix missing input sanitising (26.04.2010)
 documentSecPod Research, Apache ActiveMQ is prone to source code disclosure vulnerability. (26.04.2010)
 documentInj3ct0r.com, Opencourrier 2.03beta (RFI/LFI) Multiple File Include Vulnerability (26.04.2010)
 documentInj3ct0r.com, OpenCominterne 1.01 Local File Include Vulnerability (26.04.2010)
 documentmd.r00t.defacer_(at)_gmail.com, In-portal 5.0.3 Remote Arbitrary File Upload Exploit (26.04.2010)
 documentMustLive, Vulnerability in Referer for DataLife Engine (26.04.2010)
 documentmd.r00t.defacer_(at)_gmail.com, IWD Group SQL Injection Vulnerabilities (26.04.2010)
 documentInj3ct0r.com, Openpresse 1.01 Local File Include Vulnerability (26.04.2010)
 documentInj3ct0r.com, Openplanning 1.00 (RFI/LFI) Multiple File Include Vulnerability (26.04.2010)
 documentInj3ct0r.com, Openfoncier 2.00 (RFI/LFI) Multiple File Include Vulnerability (26.04.2010)
 documentMustLive, Cross-Site Scripting уязвимость в Переходы для DataLife Engine (26.04.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod