Search:Vulnerability:11.12.2006 - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

Winamp Web Interface multiplse security vulnerabilities
Published: 11.12.2006
Source: FULL-DISCLOSURE
SecurityVulns ID: 6915
Type: remote
Level: 5/10
Description: Buffer overflows, directory traversal and protection bypass.

Affected: WAWI : Winamp Web Interface 7.5

Original document Luigi Auriemma, [Full-disclosure] Multiple vulnerabilities in Winamp Web Interface 7.5.13 (11.12.2006)

Discuss: Read or add your comments to this news (0 comments)

ColdFusion MX7 multiple security vulnerabilities
Published: 11.12.2006
Source: FULL-DISCLOSURE
SecurityVulns ID: 6914
Type: remote
Level: 4/10
Description: Information leak, crossite scripting protection bypass.

Affected: ADOBE : ColdFusion MX7

Original document Brett Moore, [Full-disclosure] [SBDA] - ColdFusion MX7 - Multiple Vulnerabilities (11.12.2006)

Discuss: Read or add your comments to this news (0 comments)

D-Link D-LINK DWL-2000AP+ wireless access point DoS
Published: 11.12.2006
Source: MILW0RM
SecurityVulns ID: 6916
Type: remote
Level: 5/10
Description: ARP packets flood causes device to crash.

Affected: DLINK : D-LINK DWL-2000AP+

Original document poplix_(at)_papuasia.org, D-LINK DWL-2000AP+ remote DoS (11.12.2006)

Files: ARP FLOODER v0.1
Discuss: Read or add your comments to this news (0 comments)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published: 11.12.2006
Source: BUGTRAQ
SecurityVulns ID: 6913
Type: remote
Level: 5/10
Description: PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected: SQUIRRELMAIL : squirrelmail 1.4
RANDSHOP : randshop 1.2
B2EVOLUTION : b2evolution 1.8
PHPALBUM : phpAlbum 0.4
DRUPAL : Drupal Help Tip Module 4.7
DRUPAL : Drupal Chatroom Module 4.7
MESSAGERIESCRIPT : Messageriescripthp 2.2
PHPLEAGUE : PhpLeague 0.81

Original document SECUNIA, [SA23342] PhpLeague "cheminmini" File Inclusion Vulnerabilities (11.12.2006)

SECUNIA, [SA23319] Messageriescripthp SQL Injection and Cross-Site Scripting (11.12.2006)

MANDRIVA, [ MDKSA-2006:226 ] - Updated squirrelmail packages fix vulnerabilities (11.12.2006)

SECUNIA, [SA23346] b2evolution "inc_path" File Inclusion Vulnerability (11.12.2006)

document SECUNIA, [SA23343] Drupal Chatroom Module Session ID Information Disclosure (11.12.2006)

SECUNIA, [SA23295] Drupal Help Tip Module Multiple Vulnerabilities (11.12.2006)

hazer.cft_(at)_gmail.com, множественные уязвимости в randshop 1.2 (11.12.2006)

Files: phpAlbum <= v0.4.1 Beta6 Remote Code Execution Exploit
Discuss: Read or add your comments to this news (0 comments)

IBM WebSphere Host On-Demand authentication bypass
Published: 11.12.2006
Source: BUGTRAQ
SecurityVulns ID: 6917
Type: remote
Level: 5/10
Description: Some URLs allow access without authentication.

Affected: IBM : WebSphere Host On-Demand 6.0
IBM : WebSphere Host On-Demand 7.0
IBM : WebSphere Host On-Demand 8.0
IBM : WebSphere Host On-Demand 9.0

Original document Ferguson, David, Unauthenticated access to IBM Host On-Demand administration pages (11.12.2006)

Discuss: Read or add your comments to this news (0 comments)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

test server