 |
|
|
|
CGI bugs
updated since 03.03.2003 | | Published: |  | 09.03.2003 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 2628 | | Type: |  | remote | | Level: |  | 5/10 |
| Affected: |  | PHPNUKE : PHP-Nuke 6.0 | | | | 3D3 : ShopFactory 5.8 | | | | PY : PY-Livredor 1.0 | | | | WEBERP : web-erp 0.1 | | | | TYPO3 : TYPO3 3.5 | | | | CGI : uploader.php | | | | PHPAPPS : PHP Ping 0.1 | | | | WORDIT : Wordit Limited 2000 | | | | SIMPLEBBS : SimpleBBS 1.0 | | | | UPLOADLITE : Upload Lite 3.22 |
| Original document |  | Sil, Vulnerability in Upload Lite 3.22 that could allow somebody to upload/execute code on a remote host. (09.03.2003) |
| | | flur, SimpleBBS 1.0.6 Default Permissions Vuln (09.03.2003) |
| | | Aleksey Sintsov, Wordit Logbook Version 0.98b3 (07.03.2003) |
| | | frog frog, PHP-Nuke 6.0 (& 6.5?) : Serious SQL Injection Security Holes (06.03.2003) |
| | | Grégory Le Bras | Security Corporation, [SCSA-009] Remote Command Execution Vulnerability in PHP Ping (06.03.2003) |
| | | Maarten, shopfactory shopping cart (06.03.2003) |
| | | kingcope_(at)_gmx.net, uploader.php vulnerability (04.03.2003) |
| | | Martin Eiszner, typo3 issues (04.03.2003) |
| | | Martin Eiszner, typo3 issues (03.03.2003) |
| | | Ryan Fox, web-erp 0.1.4 database access vulnerability (03.03.2003) |
| | | frog frog, WebChat (PHP) (03.03.2003) |
| | | Grégory Le Bras | Security Corporation, [SCSA-008] Cross Site Scripting & Script Injection Vulnerability in PY-Livredor (03.03.2003) |
| MySQL privelege escalation | | Published: | | 09.03.2003 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 2640 | | Type: | | local | | Level: | | 5/10 | | Description: |  | By spoofing datadir/my.cnf with SELECT INTO it's possible to launch MySQL with any account, including root. |
| |
|
| |
