Computer Security

Search:Vulnerability:24.04.2002
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Crossite scripting in PHPNuke/PostNUKE
updated since 03.12.2001
Published:24.04.2002
Source:BUGTRAQ
SecurityVulns ID:1609
Type:remote
Level:5/10
Affected:PHPNUKE : PHPNuke 5.3
 PHPNUKE : PHPNuke 5.5
Original documentdocumentReplugge [Rod], More Cross site Scripting in PHPNuke (24.04.2002)
 documentThiébaut, Security bugs in PhpNuke (04.04.2002)
 documentfrog frog, PHP-Nuke 5.5 , Phortail 1.2.1 , Avotravis 2.1 (05.03.2002)
 documentfrog frog, CSS in PHPNuke add-on (08.01.2002)
 documentrolphin, CrossSiteScripting PostNuke. (08.01.2002)
 documentReplugge [Rod], PHPNuke 5 Cross Scripting (20.12.2001)
 documentacz [iSecureLabs], Phpnuke module.php vulnerability and php error_reporting issue (18.12.2001)
 documentrolphin, Re: PHPNuke holes (17.12.2001)
 documentfrog frog, CSS in DMOZGateway ( php-nuke ) (17.12.2001)
 documentfrog frog, Security hole in IMessenger ( PHP-Nuke ) (17.12.2001)
 documentfrog frog, PHPNuke Cross Scripting... (17.12.2001)
 documentacz [iSecureLabs], Phpnuke Cross site scripting vulnerability (03.12.2001)
Discuss:Read or add your comments to this news (0 comments)

Mosix DoS
Published:24.04.2002
Source:BUGTRAQ
SecurityVulns ID:1964
Type:remote
Level:5/10
Description:Service crashes on malcrafted packet.
Affected:MOSIX : mosix 1.5
Original documentdocumentenrico_(at)_wizards-of-source.org, Denial of Service in Mosix 1.5.x (24.04.2002)
Discuss:Read or add your comments to this news (0 comments)

CGI bugs
updated since 22.04.2002
Published:24.04.2002
Source:BUGTRAQ
SecurityVulns ID:1955
Type:remote
Level:5/10
Affected:CGI : Philip Chinery's Guestbook 1.1
 CGI : PostCalendar
 UPB : Ultimate PHP Board 1.0
 UPB : Ultimate PHP Board 1.1
 CGI : csMailto.cgi
Original documentdocumentSteve Gustin, CGIscript.net - csMailto.cgi - Remote Command Execution (24.04.2002)
 documentfrog frog, Security holes : Ultimate PHP Board (23.04.2002)
 documentmarkus arndt, Philip Chinery's Guestbook 1.1 fails to filter out js/html (23.04.2002)
 documentgcsb, Vulnerability in PostCalendar (22.04.2002)
Discuss:Read or add your comments to this news (0 comments)

LabVIEW Web Server DoS
Published:24.04.2002
Source:BUGTRAQ
SecurityVulns ID:1963
Type:remote
Level:5/10
Description:GET request with \n instead of \r\n causes server to crash.
Affected:NI : LabVIEW 6.1
Original documentdocumentSteve Zins, LabVIEW Web Server DoS Vulnerability (24.04.2002)
Discuss:Read or add your comments to this news (0 comments)

Special DOS-device access in Microsoft Outlook Express
Published:24.04.2002
Source:ERR0R
SecurityVulns ID:1965
Type:client
Level:6/10
Description:It's possible to hang Outlooks Express by using prn: device as a name for bgsound or iframe. It's also possible to send data to special device.
Affected:MICROSOFT : Internet Explorer 5.5
 MICROSOFT : Internet Explorer 6.0
Original documentdocumentERRor, Special DOS device DoS against Microsoft Outlook Express (24.04.2002)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru