Computer Security
[EN] securityvulns.ru no-pyccku


Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:16.07.2012
Source:
SecurityVulns ID:12480
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:WORDPRESS : WordPress 2.0
 KAJONA : Kajona 3.4
 RESERVELOGIC : Reserve Logic 1.2
 EXTPLORER : extplorer 2.1
 MONO : mono 2.10
 AKISMET : Akismet 2.5
 GLPI : GLPI 0.83
 PUPPET : puppet 2.7
 PHONALISA : Phonalisa 5.0
CVE:CVE-2012-3867 (lib/puppet/ssl/certificate_authority.rb in Puppet before 2.6.17 and 2.7.x before 2.7.18, and Puppet Enterprise before 2.5.2, does not properly restrict the characters in the Common Name field of a Certificate Signing Request (CSR), which makes it easier for user-assisted remote attackers to trick administrators into signing a crafted agent certificate via ANSI control sequences.)
 CVE-2012-3866 (lib/puppet/defaults.rb in Puppet 2.7.x before 2.7.18, and Puppet Enterprise before 2.5.2, uses 0644 permissions for last_run_report.yaml, which allows local users to obtain sensitive configuration information by leveraging access to the puppet master server to read this file.)
 CVE-2012-3865 (Directory traversal vulnerability in lib/puppet/reports/store.rb in Puppet before 2.6.17 and 2.7.x before 2.7.18, and Puppet Enterprise before 2.5.2, when Delete is enabled in auth.conf, allows remote authenticated users to delete arbitrary files on the puppet master server via a .. (dot dot) in a node name.)
 CVE-2012-3864 (Puppet before 2.6.17 and 2.7.x before 2.7.18, and Puppet Enterprise before 2.5.2, allows remote authenticated users to read arbitrary files on the puppet master server by leveraging an arbitrary user's certificate and private key in a GET request.)
 CVE-2012-3805 (Multiple cross-site scripting (XSS) vulnerabilities in the getAllPassedParams function in system/functions.php in Kajona before 3.4.2 allow remote attackers to inject arbitrary web script or HTML via the (1) absender_name, (2) absender_email, or (3) absender_nachricht parameter to the content page; (4) comment_name, (5) comment_subject, or (6) comment_message parameter to the postacomment module; (7) module parameter to index.php; (8) action parameter to the admin login page; (9) pv or (10) pe parameter in a list action to the user module; (11) user_username, (12) user_email, (13) user_forename, (14) user_name, (15) user_street, (16) user_postal, (17) user_city, (18) user_tel, or (19) user_mobil parameter in a newUser action to the user module; (20) group_name or (21) group_desc parameter in a groupNew action to the user module; (22) name, (23) browsername, (24) seostring, (25) keywords, or (26) folder_id parameter in a newPage action to the pages module; (27) element_name or (28) element_cachetime parameter)
 CVE-2012-3382 (Cross-site scripting (XSS) vulnerability in the ProcessRequest function in mcs/class/System.Web/System.Web/HttpForbiddenHandler.cs in Mono 2.10.8 and earlier allows remote attackers to inject arbitrary web script or HTML via a file with a crafted name and a forbidden extension, which is not properly handled in an error message.)
 CVE-2012-3362 (Cross-site request forgery (CSRF) vulnerability in eXtplorer 2.1 RC3 and earlier allows remote attackers to hijack the authentication of administrators for requests that add an administrator account via an adduser admin action.)
Original documentdocumentVulnerability Lab, Phonalisa v5.0 VoiP - Multiple Web Vulnerabilities (16.07.2012)
 documentUBUNTU, [USN-1506-1] Puppet vulnerabilities (16.07.2012)
 documentPrajal Kulkarni, Multiple CSRF Vulnerabilities in [GLPI Version 0.83.2] (16.07.2012)
 documentPrajal Kulkarni, Cross site scripting vulnerability found in GLPI 0.83.2 (16.07.2012)
 documentMustLive, XSS, Redirector and CSRF vulnerabilities in WordPress (16.07.2012)
 documentDEBIAN, [SECURITY] [DSA 2512-1] mono security update (16.07.2012)
 documentDEBIAN, [SECURITY] [DSA 2510-1] extplorer security update (16.07.2012)
 documentVulnerability Lab, PHP Jobsite v1.36 - Cross Site Scripting Vulnerabilities (16.07.2012)
 documentVulnerability Lab, Reserve Logic v1.2 Booking CMS - Multiple Vulnerabilities (16.07.2012)
 documentHigh-Tech Bridge Security Research, Multiple Cross-Site Scripting (XSS) in Kajona (16.07.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod