Computer Security
[EN] securityvulns.ru no-pyccku


Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:03.03.2013
Source:
SecurityVulns ID:12923
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:DJANGO : django 1.4
 PHPFUSION : PHP-Fusion 7.02
 PIWIGO : Piwigo 2.4
 GEEKLOG : Geeklog 1.8
 QUESTION2ANSWER : Question2Answer 1.5
 RUBYGEMS : rubygems fileutils 0.7
 JOOMLA : Joomla! 3.0
 JOOMLA : Joomla! 2.5
 APACHE : Maven 3.0
 FUSIONFORGE : fusionforge 5.0
 KAYAKO : Fusion 4.51
CVE:CVE-2013-1665 (The XML libraries for Python 3.4, 3.3, 3.2, 3.1, 2.7, and 2.6, as used in OpenStack Keystone Essex and Folsom, Django, and possibly other products allow remote attackers to read arbitrary files via an XML external entity declaration in conjunction with an entity reference, aka an XML External Entity (XXE) attack.)
 CVE-2013-1470 (Cross-site scripting (XSS) vulnerability in calendar/index.php in the Calendar plugin in Geeklog before 1.8.2sr1 and 2.0.0 before 2.0.0rc2 allows remote attackers to inject arbitrary web script or HTML via the calendar_type parameter to submit.php.)
 CVE-2013-1469 (Directory traversal vulnerability in install.php in Piwigo before 2.4.7 allows remote attackers to read and delete arbitrary files via a .. (dot dot) in the dl parameter.)
 CVE-2013-1468 (Cross-site request forgery (CSRF) vulnerability in the LocalFiles Editor plugin in Piwigo before 2.4.7 allows remote attackers to hijack the authentication of administrators for requests that create arbitrary PHP files via unspecified vectors.)
 CVE-2013-1423 ((1) contrib/gforge-3.0-cronjobs.patch, (2) cronjobs/homedirs.php, (3) deb-specific/fileforge.pl, (4) deb-specific/group_dump_update.pl, (5) deb-specific/ssh_dump_update.pl, (6) deb-specific/user_dump_update.pl, (7) plugins/scmbzr/common/BzrPlugin.class.php, (8) plugins/scmcvs/common/CVSPlugin.class.php, (9) plugins/scmcvs/cronjobs/cvs.php, (10) plugins/scmcvs/cronjobs/ssh_create.php, (11) plugins/scmgit/common/GitPlugin.class.php, (12) plugins/scmsvn/common/SVNPlugin.class.php, (13) plugins/wiki/cronjobs/create_groups.php, (14) utils/cvs1/cvscreate.sh, and (15) utils/include.pl in FusionForge 5.0, 5.1, and 5.2 allows local users to change arbitrary file permissions, obtain sensitive information, and have other unspecified impacts via a (1) symlink or (2) hard link attack on certain files.)
 CVE-2013-0306 (The form library in Django 1.3.x before 1.3.6, 1.4.x before 1.4.4, and 1.5 before release candidate 2 allows remote attackers to bypass intended resource limits for formsets and cause a denial of service (memory consumption) or trigger server errors via a modified max_num parameter.)
 CVE-2013-0305 (The administrative interface for Django 1.3.x before 1.3.6, 1.4.x before 1.4.4, and 1.5 before release candidate 2 does not check permissions for the history view, which allows remote authenticated administrators to obtain sensitive object history information.)
 CVE-2013-0253 (The default configuration of Apache Maven 3.0.4, when using Maven Wagon 2.1, disables SSL certificate checks, which allows remote attackers to spoof servers via a man-in-the-middle (MITM) attack.)
 CVE-2012-4520 (The django.http.HttpRequest.get_host function in Django 1.3.x before 1.3.4 and 1.4.x before 1.4.2 allows remote attackers to generate and display arbitrary URLs via crafted username and password Host header values.)
Original documentdocumentVulnerability Lab, Kayako Fusion v4.51.1891 - Multiple Web Vulnerabilities (03.03.2013)
 documentAPACHE, Fwd: [SECURITY] CVE-2013-0253 Apache Maven 3.0.4 (03.03.2013)
 documentDEBIAN, [SECURITY] [DSA 2634-1] python-django security update (03.03.2013)
 documentDEBIAN, [SECURITY] [DSA 2633-1] fusionforge security update (03.03.2013)
 documentEgidio Romano, [KIS-2013-03] Joomla! <= 3.0.2 (highlight.php) PHP Object Injection Vulnerability (03.03.2013)
 documentJanek Vind, [waraxe-2013-SA#097] - Multiple Vulnerabilities in PHP-Fusion 7.02.05 (03.03.2013)
 documentlarry0_(at)_me.com, Fileutils ruby gem possible remote command execution and insecure file handling in /tmp (03.03.2013)
 documentMustLive, BF, IAA and CSRF vulnerabilities in Question2Answer (03.03.2013)
 documentHigh-Tech Bridge Security Research, Cross-Site Scripting (XSS) in Geeklog (03.03.2013)
 documentHigh-Tech Bridge Security Research, Multiple Vulnerabilities in Piwigo (03.03.2013)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod