Computer Security
[EN] securityvulns.ru no-pyccku


Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:15.04.2006
Source:
SecurityVulns ID:6012
Type:remote
Threat Level:
5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:OSCOMMERCE : osCommerce 2.2
 ARBLOG : ar-blog 5.2
 PAPOO : Papoo 2.1
 FARSINEWS : Farsinews 2.5
 REDCMS : RedCMS 0.1
 POWERSCRIPTS : PowerClan 1.14
 AWEBNEWS : aWebNews 1.1
 LIFETYPE : LifeType 1.0
 MODX : modx 0.9
 ENCYCLOPEDIA : Encyclopedia 3.0
 PLANETC : planetSearch+ 26.10.2005
Original documentdocumentd4igoro_(at)_gmail.com, planetSearch+ - XSS Vulnerabilities (15.04.2006)
 documentw3.__(at)_hotmail.com, Xss In ar-blog v 5.2 (15.04.2006)
 documentnoch22_(at)_gmail.com, phpBB template file code execution (15.04.2006)
 documentmoep, Serendipity Blog vuln (15.04.2006)
 documentnoch22_(at)_gmail.com, phpBB Admin command execution (15.04.2006)
 documentn0m3rcy_(at)_bsdmail.org, Encyclopedia <= 3.0 (login.php) CrossSite Scripting - XSS (15.04.2006)
 documentrgod_(at)_autistici.org, osCommerce "extras/" information/source code disclosure (15.04.2006)
 documentaminrayden_(at)_yahoo.com, Farsinews Cross-Site Scripting & Path disclosure vulnerability (15.04.2006)
 documentcrasher_(at)_kecoak.or.id, Vulnerabilities in MODx (15.04.2006)
 documentcrasher_(at)_kecoak.or.id, Vulnerabilities in Papoo (15.04.2006)
 documentcrasher_(at)_kecoak.or.id, Vulnerabilities in lifetype (15.04.2006)
 documentAliaksandr Hartsuyeu, [eVuln] aWebNews Multiple XSS and SQL Injection Vulnerabilities (15.04.2006)
 documentd4igoro_(at)_gmail.com, PowerClan 1.14 - SQL Injection (15.04.2006)
 documentAliaksandr Hartsuyeu, [eVuln] RedCMS Multiple XSS and SQL Injection Vulnerabilities (15.04.2006)

Avast! antivirus Linux edition symbolic links problem
Published:15.04.2006
Source:
SecurityVulns ID:6013
Type:local
Threat Level:
5/10
Description:Insecure temporary file creation.
Affected:AVAST : Avast! Linux 1.0
Original documentdocumentJulien L., Avast Linux Home Edition (vulnerability on a temporary folder creation) (15.04.2006)

fcheck symbolic links
Published:15.04.2006
Source:
SecurityVulns ID:6014
Type:local
Threat Level:
5/10
Description:Insecure temporary file creation.
Affected:FCHECK : fcheck 2.7
Original documentdocumentDEBIAN, [Full-disclosure] [SECURITY] [DSA 1035-1] New fcheck packages fix insecure temporary file creation (15.04.2006)

Sun Java Studio Enterprise weak file permissions
Published:15.04.2006
Source:
SecurityVulns ID:6015
Type:local
Threat Level:
5/10
Description:Some files are installed world-writable.
Affected:SUN : Java Studio Enterprise 8.0
Original documentdocumentSECUNIA, [SA19632] Sun Java Studio Enterprise Insecure File Permissions (15.04.2006)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod