Computer Security
[EN] no-pyccku

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
SecurityVulns ID:11218
Threat Level:
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:JOOMLA : Joomla 1.5
 FGSSTUDIO : WebManager-Pro 7.4
 VMWARE : Spring Security 3.0
 VMWARE : Spring Security 2.0
 SPRINGSOURCE : Acegi Security 1.0
CVE:CVE-2010-3700 (VMware SpringSource Spring Security 2.x before 2.0.6 and 3.x before 3.0.4, and Acegi Security 1.0.0 through 1.0.7, as used in IBM WebSphere Application Server (WAS) 6.1 and 7.0, allows remote attackers to bypass security constraints via a path parameter.)
Original documentdocuments2-security, CVE-2010-3700: Spring Security bypass of security constraints (01.11.2010)
 documentMustLive, XSS и SQL Injection уязвимости в CMS WebManager-Pro (01.11.2010)
 documentYGN Ethical Hacker Group, Joomla 1.5.21 | Potential SQL Injection Flaws (01.11.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod