Computer Security
[EN] no-pyccku

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
SecurityVulns ID:12701
Threat Level:
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:WORDPRESS : Answer my question 1.1
 PHOME : EmpireCMS 6.6
CVE:CVE-2012-5777 (Eval injection vulnerability in the ReplaceListVars function in the template parser in e/class/connect.php in EmpireCMS 6.6 allows user-assisted remote attackers to execute arbitrary PHP code via a crafted template.)
Original documentdocumentmachuanlei, [CVE-2012-5777]EmpireCMS Template Parser Remote PHP Code Execution Vulnerability (06.11.2012)
 documentmarcelavbx_(at), XSS in answer my question plugin (06.11.2012)
 documentX-Cisadane, AwAuctionScript (Aw Auction Script - Market Place for WebMasters) Multiple Vulnerabilities (06.11.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod