 |
|
|
|
| Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) | | Published: |  | 21.03.2010 | | Source: |  | | | SecurityVulns ID: |  | 10703 | | Type: |  | remote | | Level: |  | 5/10 | | Description: |  | PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. |
| PHP DoS | | Published: | | 21.03.2010 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 10704 | | Type: | | library | | Level: | | 6/10 | | Description: | | Crash on XML-RPC requests processing. |
| Affected: |  | PHP : PHP 5.2 | | | | PHP : PHP 5.3 | | CVE: |  | CVE-2010-0397 (The xmlrpc extension in PHP 5.3.1 does not properly handle a missing methodName element in the first argument to the xmlrpc_decode_request function, which allows context-dependent attackers to cause a denial of service (NULL pointer dereference and application crash) and possibly have unspecified other impact via a crafted argument.) |
IBM Lotus Domino response splitting
updated since 21.03.2010 | | Published: | | 23.03.2010 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 10705 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Response splitting via POST request to /names.nsf, crossite scripting. |
|
|
|
|
|
|
|
|
