Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
Published:		24.04.2007
Source:
SecurityVulns ID:		7630
Type:		remote
Level:		5/10
Description:		PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.

Affected:		LMS : lms 1.5
		ESFORUM : EsForum 3.0
		RIPECMS : Ripe Website Manager 0.8
		JOOMLA : Joomla 1.5
		BIBTEX : bibtex mase 2.0
		TOUTJAVASCRIPT : TJSChat 0.95
		ACVS : acvsws_php5 1.0
		PHPMYSPACE : phpMySpace Gold 8.10
		POSTREVOLUTION : Post Revolution 6.6
		POSTREVOLUTION : Post Revolution 7.0
		YABOOK : YA Book 0.98

Original document		omnipresent_(at)_email.it, YA Book Persistent XSS Bug (24.04.2007)
		InyeXion_(at)_gmail.com, Post Revolution Remote File Inclusion (24.04.2007)
		john_(at)_martinelli.com, phpMySpace Gold (v8.10) - Blind SQL/XPath Injection Exploit (24.04.2007)
		HACKERS PAL, DmCMS Shell Uploading (24.04.2007)
		Mohandko_(at)_Gmail.com, acvsws_php5_v1.0 <= Multiple Remote File Include Vulnerablitiy (24.04.2007)
		the_3dit0r_(at)_yahoo.com, TJSChat Version 0.95 Cross Site Scripting (24.04.2007)
		seko_(at)_se-ko.info, Big Blue Guestbook HTML Injection Vulnerabilities (24.04.2007)
		InyeXion_(at)_gmail.com, bibtex mase Remote File Inclusion (24.04.2007)
		Omid, Remote file inclusion in Joomla 1.5.0 Beta (24.04.2007)
		Mohandko_(at)_Gmail.com, c-arbre <= Multiple Remote File Include Vulnerablitiy (24.04.2007)
		john_(at)_martinelli.com, Ripe Website Manager (<= 0.8.4) - SQL Injection Vulnerability and Cross-Site Scripting Exploit (24.04.2007)
		InyeXion_(at)_gmail.com, File117 Remote File Inclusion (24.04.2007)
		Mohandko_(at)_Gmail.com, PHPMyBibli <= Multiple Remote File Include (24.04.2007)
		InyeXion_(at)_gmail.com, lms 1.5.3 Remote File Inclusion (24.04.2007)
		Mohandko_(at)_Gmail.com, claroline <= Multiple Remote File Include Vulnerablitiy (24.04.2007)
		asdasd asdsadas, Allfaclassfieds (level2.php dir) remote file inclusion (24.04.2007)

Files:		Ripe Website Manager (<= 0.8.4) - SQL Injection Vulnerability and Cross-Site Scripting Exploit
		DmCMS Shell Upload exploit
		phpMySpace Gold (v8.10) - Blind SQL/XPath Injection Exploit
Discuss:		Read or add your comments to this news (0 comments)

Lilnksys SPA941 VoIP phone DoS
Published:		24.04.2007
Source:		FULL-DISCLOSURE
SecurityVulns ID:		7632
Type:		remote
Level:		5/10
Description:		Denial of Service on character with code 255 in SIP INVITE message.

Affected:

LINKSYS : Linksys SPA941

Original document

Radu State, [Full-disclosure] Linksys SPA941 remote DOS with \377 character (24.04.2007)

Files:		Linksys SPA941 \377 character Remote Denial of Service Exploit
		Linksys SPA941 (remote reboot) Remote Denial of Service Exploit
Discuss:		Read or add your comments to this news (0 comments)

PostgreSQL privilege escalation
Published:		24.04.2007
Source:		BUGTRAQ
SecurityVulns ID:		7631
Type:		local
Level:		6/10
Description:		By using temporary objects, unprivileged user can execute function with permissions of security-definer.

Affected:		POSTGRES : PostgreSQL 8.1
CVE:		CVE-2007-2138 (Untrusted search path vulnerability in PostgreSQL before 7.3.19, 7.4.x before 7.4.17, 8.0.x before 8.0.13, 8.1.x before 8.1.9, and 8.2.x before 8.2.4 allows remote authenticated users, when permitted to call a SECURITY DEFINER function, to gain the privileges of the function owner, related to "search_path settings.")

Original document

RPATH, rPSA-2007-0081-1 postgresql postgresql-server (24.04.2007)

Discuss:

Read or add your comments to this news (0 comments)