Computer Security

Search:Vulnerability:23.09.2006
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:23.09.2006
Source:
SecurityVulns ID:6646
Type:remote
Level:5/10
Description:PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
Affected:REDBLOG : RedBloG 0.5
 ESKOLAR : Eskolar CMS 0.9
 CAKEPHP : CakePHP 1.1
 EVISION : e-Vision CMS 2.0
 SQUIZ : MySource Matrix 3.8
 PLESK : PLESK 7.5
 SWSOFT : Plesk 7.6
Original documentdocumentSECUNIA, [SA21992] BandSite CMS Cross-Site Scripting Vulnerabilities (23.09.2006)
 documentSECUNIA, [SA22063] NixieAffiliate Multiple Vulnerabilities (23.09.2006)
 documentSECUNIA, [SA22040] CakePHP "file" Parameter Disclosure of Sensitive Information (23.09.2006)
 documentSECUNIA, [SA22000] Feedsplitter Script Insertion and Local File Inclusion (23.09.2006)
 documentguanyu_vn_(at)_yahoo.com, [PLESK 7.5 Reload] & [PLESK 7.6 for MS Windows] path passing and disclosure vulnerability (23.09.2006)
 documentPatrick Webster, Squiz MySource Matrix Unauthorised Proxy and Cross Site Scripting (23.09.2006)
 documentPatrick Webster, Google Mini Search Applicance Path Disclosure (23.09.2006)
 documentCvIr.System_(at)_gmail.com, jevoncms (.inc) Path Disclosure (23.09.2006)
 documentsn4k3.23_(at)_gmail.com, Woltlab Burning Board 2.3.X SQL Injection Vulnerability (23.09.2006)
 documentHACKERS PAL, Eskolar CMS Remote Sql Injection (23.09.2006)
 documentHACKERS PAL, E-Vision CMS Multible Remote injections (23.09.2006)
 documentKeyCoder KeyCoder, RedBloG 0.x Multiple Remote File Include (23.09.2006)
Files:Eskolar CMS Remote sql injection exploit
 e-Vision CMS Remote sql injection exploit
Discuss:Read or add your comments to this news (0 comments)

Multiple CA eTrust Security Command Center / eTrust Audit security vulnerabilities
updated since 22.09.2006
Published:23.09.2006
Source:BUGTRAQ
SecurityVulns ID:6644
Type:remote
Level:5/10
Description:Path disclosure, directory traversal, replay attacks.
Affected:CA : eTrust Audit 1.5
 CA : eTrust Security Command Center 1.0
Original documentdocumentPatrick Webster, RE: Computer Associates eTrust Security Command Center Multiple Vulnerabilities (23.09.2006)
 documentCA, [CAID 34616, 34617, 34618]: CA eSCC and eTrust Audit vulnerabilities (22.09.2006)
Discuss:Read or add your comments to this news (0 comments)

ContentKeeper information leak
Published:23.09.2006
Source:BUGTRAQ
SecurityVulns ID:6647
Type:m-i-t-m
Level:5/10
Description:HTML web administration page contains administrator's password in cleartext.
Affected:CONTENTKEEPER : ContentKeeper 123.25
Original documentdocumentPatrick Webster, ContentKeeper Authenticated Access Password Disclosure (23.09.2006)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server