Computer Security
[EN] securityvulns.ru no-pyccku


Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:14.11.2012
Source:
SecurityVulns ID:12714
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:WORDPRESS : WP E-Commerce 3.8
 EVENTY : Eventy CMS 1.8
 BANANADANCE : BananaDance Wiki 2.2
CVE:CVE-2012-5856 (Cross-site scripting (XSS) vulnerability in the Uk Cookie (aka uk-cookie) plugin for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.)
Original documentdocumentVulnerability Lab, BananaDance Wiki b2.2 - Multiple Web Vulnerabilities (14.11.2012)
 documentdefensecode_(at)_defensecode.com, [DC-2012-11-001] DefenseCode ThunderScan PHP Advisory: Wordpress WP e-Commerce Plugin Multiple Security Vulnerabilities (14.11.2012)
 documentVulnerability Lab, Eventy CMS v1.8 Plus - Multiple Web Vulnerablities (14.11.2012)
 documentEmmanuel FARCY, Reflective XSS in uk cookie plugin (14.11.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod