Computer Security
[EN] securityvulns.ru no-pyccku


Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:05.08.2010
Source:
SecurityVulns ID:11027
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:WORDPRESS : WordPress 2.0
 MOINMOIN : MoinMoin 1.9
 SOURCEFABRIC : Campsite 3.3
 68KB : 68KB 1.0
 MOINMOIN : MoinMoin 1.7
CVE:CVE-2010-2487 (Multiple cross-site scripting (XSS) vulnerabilities in MoinMoin 1.7.3 and earlier, 1.8.x before 1.8.8, and 1.9.x before 1.9.3 allow remote attackers to inject arbitrary web script or HTML via crafted content, related to (1) Page.py, (2) PageEditor.py, (3) PageGraphicalEditor.py, (4) action/CopyPage.py, (5) action/Load.py, (6) action/RenamePage.py, (7) action/backup.py, (8) action/login.py, (9) action/newaccount.py, and (10) action/recoverpass.py.)
Original documentdocumentInsomnia Security, Insomnia : ISVA-100730.1 - CMS Multiple SQL injection Vulnerabilities (05.08.2010)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in Campsite (05.08.2010)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in Campsite (05.08.2010)
 documenteidelweiss randy, 68KB v1.0.0rc4 Remote File Include Vulnerability (05.08.2010)
 documentMustLive, CSRF, Information Leakage and Full path disclosure vulnerabilities in WordPress (05.08.2010)
 documentMustLive, Information Leakage and Full path disclosure vulnerabilities in WordPress (05.08.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod