Computer Security
[EN] securityvulns.ru no-pyccku


Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:01.11.2010
Source:
SecurityVulns ID:11218
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:JOOMLA : Joomla 1.5
 FGSSTUDIO : WebManager-Pro 7.4
 VMWARE : Spring Security 3.0
 VMWARE : Spring Security 2.0
 SPRINGSOURCE : Acegi Security 1.0
CVE:CVE-2010-3700 (VMware SpringSource Spring Security 2.x before 2.0.6 and 3.x before 3.0.4, and Acegi Security 1.0.0 through 1.0.7, as used in IBM WebSphere Application Server (WAS) 6.1 and 7.0, allows remote attackers to bypass security constraints via a path parameter.)
Original documentdocuments2-security, CVE-2010-3700: Spring Security bypass of security constraints (01.11.2010)
 documentMustLive, XSS и SQL Injection уязвимости в CMS WebManager-Pro (01.11.2010)
 documentYGN Ethical Hacker Group, Joomla 1.5.21 | Potential SQL Injection Flaws (01.11.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod