Computer Security
[EN] securityvulns.ru no-pyccku


Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:02.01.2013
Source:
SecurityVulns ID:12793
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:CUBECART : CubeCart 3.0
 MOINMOIN : MoinMoin 1.9
 AFFINITY : BuddyPress 1.2
 CUBECART : CubeCart 5.0
 CUBECART : CubeCart 4.4
 MEDIAWIKI : mediawiki 2.11
 MAHARA : Mahara 1.5
 ADISCON : Log Analyzer 3.6
 BANANADANCE : Banana Dance B.2.6
 EBB : Elite Bulletin Board 2.1
 WORDPRESS : WP-UserOnline 2.62
CVE:CVE-2012-6037 (Multiple cross-site scripting (XSS) vulnerabilities in Mahara 1.4.x before 1.4.5 and 1.5.x before 1.5.4, and other versions including 1.2, allow remote attackers to inject arbitrary web script or HTML via a CSV header with "unknown fields," which are not properly handled in error messages in the (1) bulk user, (2) group, and (3) group member upload capabilities. NOTE: this issue was originally part of CVE-2012-2243, but that ID was SPLIT due to different issues by different researchers.)
 CVE-2012-5874 (Multiple SQL injection vulnerabilities in the (1) update_whosonline_reg and (2) update_whosonline_guest functions in Elite Bulletin Board before 2.1.22 allow remote attackers to execute arbitrary SQL commands via the PATH_INFO to (a) checkuser.php, (b) groups.php, (c) index.php, (d) login.php, (e) quicklogin.php, (f) register.php, (g) Search.php, (h) viewboard.php, or (i) viewtopic.php.)
 CVE-2012-5244 (Multiple SQL injection vulnerabilities in Banana Dance B.2.6 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) return, (2) display, (3) table, or (4) search parameter to functions/suggest.php; (5) the id parameter to functions/widgets.php, (6) the category parameter to functions/print.php; or (7) the name parameter to functions/ajax.php.)
 CVE-2012-5243 (functions/suggest.php in Banana Dance B.2.6 and earlier allows remote attackers to read arbitrary database information via a crafted request.)
 CVE-2012-5242 (Directory traversal vulnerability in functions/suggest.php in Banana Dance B.2.6 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the name parameter in a get_template action.)
 CVE-2012-2253 (Cross-site scripting (XSS) vulnerability in group/members.php in Mahara 1.5.x before 1.5.7 and 1.6.x before 1.6.2 allows remote attackers to inject arbitrary web script or HTML via the query parameter.)
 CVE-2012-2247 (Cross-site scripting (XSS) vulnerability in Mahara 1.4.x before 1.4.5 and 1.5.x before 1.5.4 allows remote attackers to inject arbitrary web script or HTML via vectors related to artefact/file/ and a crafted SVG file.)
 CVE-2012-2246 (Mahara 1.4.x before 1.4.5 and 1.5.x before 1.5.4 allows remote attackers to conduct clickjacking attacks to delete arbitrary users and bypass CSRF protection via account/delete.php.)
 CVE-2012-2244 (Mahara 1.4.x before 1.4.5 and 1.5.x before 1.5.4 allows remote authenticated administrators to execute arbitrary programs by modifying the path to clamav. NOTE: this can be exploited without authentication by leveraging CVE-2012-2243.)
 CVE-2012-2243 (Cross-site scripting (XSS) vulnerability in Mahara 1.4.x before 1.4.5 and 1.5.x before 1.5.4 allows remote attackers to inject arbitrary web script or HTML by uploading an XML file with the xhtml extension, which is rendered inline as script. NOTE: this can be leveraged with CVE-2012-2244 to execute arbitrary code without authentication, as demonstrated by modifying the clamav path.)
 CVE-2012-2239 (Mahara 1.4.x before 1.4.4 and 1.5.x before 1.5.3 allows remote attackers to read arbitrary files or create TCP connections via an XML external entity (XXE) injection attack, as demonstrated by reading config.php.)
Original documentdocumentMustLive, XSS and CS vulnerabilities in BuddyPress for WordPress (02.01.2013)
 documentMustLive, CS and XSS vulnerabilities in BuddyPress for WordPress (02.01.2013)
 documentMustLive, Multiple vulnerabilities in multiple themes for WordPress (02.01.2013)
 documentMustLive, BF, CSRF, AoF and IAA vulnerabilities in MODx Revolution (02.01.2013)
 documentMustLive, Persistent XSS vulnerability in WP-UserOnline (02.01.2013)
 documentMustLive, Multiple vulnerabilities in RocketTheme themes for WordPress (02.01.2013)
 documentHigh-Tech Bridge Security Research, Multiple SQL Injection Vulnerabilities in Elite Bulletin Board (02.01.2013)
 documentHigh-Tech Bridge Security Research, Multiple vulnerabilities in Banana Dance (02.01.2013)
 documentVulnerability Lab, Log Analyzer 3.6.0 - Cross Site Scripting Vulnerability (02.01.2013)
 documentDEBIAN, [SECURITY] [DSA 2591-1] mahara security update (02.01.2013)
 documentUBUNTU, [USN-1680-1] MoinMoin vulnerabilities (02.01.2013)
 documentDEBIAN, [SECURITY] [DSA 2596-1] mediawiki-extensions security update (02.01.2013)
 documentYGN Ethical Hacker Group, Open-Realty CMS 3.x | Persistent Cross Site Scripting (XSS) Vulnerability (02.01.2013)
 documentYGN Ethical Hacker Group, Open-Realty CMS 3.x | Cross Site Request Forgery (CSRF) Vulnerability (02.01.2013)
 documentYGN Ethical Hacker Group, CubeCart 3.0.20 (3.0.x) and lower | Multiple Cross Site Scripting Vulnerabilities (02.01.2013)
 documentYGN Ethical Hacker Group, CubeCart 3.0.20 (3.0.x) and lower | Arbitrary File Upload (02.01.2013)
 documentYGN Ethical Hacker Group, CubeCart 3.0.20 (3.0.x) and lower | Multiple SQL Injection Vulnerabilities (02.01.2013)
 documentYGN Ethical Hacker Group, CubeCart 5.0.7 and lower | Open URL Redirection Vulnerability (02.01.2013)
 documentYGN Ethical Hacker Group, CubeCart 5.0.7 and lower | Open URL Redirection Vulnerability (02.01.2013)
 documentYGN Ethical Hacker Group, CubeCart 4.4.6 and lower | Cross Site Request Forgery (CSRF) Vulnerability (02.01.2013)
 documentYGN Ethical Hacker Group, CubeCart 4.4.6 and lower | Multiple Cross Site Scripting Vulnerabilities (02.01.2013)
 documentYGN Ethical Hacker Group, CubeCart 4.4.6 and lower | Multiple SQL Injection Vulnerabilities (02.01.2013)
 documentYGN Ethical Hacker Group, CubeCart 4.4.6 and lower | Local File Inclusion Vulnerability (02.01.2013)
 documentYGN Ethical Hacker Group, CubeCart 4.x/5.x | Setup Re-installation Privilege Escalation Vulnerability (02.01.2013)
 documentYGN Ethical Hacker Group, CubeCart 5.0.7 and lower versions | Insecure Backup File Handling (02.01.2013)
 documentYGN Ethical Hacker Group, CubeCart 5.x | Cross Site Request Forgery (CSRF) Vulnerability (02.01.2013)
 documentYGN Ethical Hacker Group, CubeCart 5.x | Multiple Cross Site Scripting Vulnerabilities (02.01.2013)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod