Search:Vulnerability:15.07.2007 - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

Microsoft Internet Explorer content spoofing
Published: 15.07.2007
Source: BUGTRAQ
SecurityVulns ID: 7938
Type: client
Level: 5/10
Description: It's possiblt to emulate navigation to different site by using document.open(), actually stayin in context of previous page.

Affected: MICROSOFT : Windows XP
MICROSOFT : Windows 2003 Server
MICROSOFT : Windows Vista

Original document Michal Zalewski, MSIE7 entrapment again (+ FF tidbit) (15.07.2007)

Discuss: Read or add your comments to this news (0 comments)

eSoft InstaGate EX2 UTM crossite forgery
Published: 15.07.2007
Source: BUGTRAQ
SecurityVulns ID: 7936
Type: remote
Level: 5/10
Description: It's possible to submit the form with configuration data.

Affected: ESOFT : InstaGate EX2

Original document Calyptix Advisories, Calyptix Security Advisory CX-2007-05 - eSoft InstaGate EX2 Cross-Site Request Forgery Attack (15.07.2007)

Discuss: Read or add your comments to this news (0 comments)

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published: 15.07.2007
Source: BUGTRAQ
SecurityVulns ID: 7937
Type: remote
Level: 5/10
Description: PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected: AZDG : AzDG Dating Gold 3.0
WEBCIT : WebCit 7.11
PHPARENA : paFileDB 3.6

Original document pUm, [Full-disclosure] paFileDB 3.6 (search.php) Remote SQL Injection (15.07.2007)

edi.strosar_(at)_varnostne-novice.com, [Full-disclosure] Element CMS script insertion vulnerability (15.07.2007)

Christopher Schwardt, Session Riding and multiple XSS in WebCit (15.07.2007)

document ThE dE@Th, AzDG Dating Gold v3.0.5 ===> Remote File Include Vulnerability (15.07.2007)

Discuss: Read or add your comments to this news (0 comments)

Opera/Konqueror URL spoofing
Published: 15.07.2007
Source: BUGTRAQ
SecurityVulns ID: 7939
Type: client
Level: 4/10
Description: By using data: URL it's possible to spoof page location.

Affected: KDE : Konqueror 3.5
OPERA : Opera 9.21

Original document Robert Święcki, Opera/Konqueror: data: URL scheme address bar spoofing (15.07.2007)

Discuss: Read or add your comments to this news (0 comments)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

test server