CGI bugs updated since 16.02.2004
Published:		20.02.2004
Source:
SecurityVulns ID:		3444
Type:		remote
Level:		5/10

Affected:		VBULLETIN : vBulletin 3.0
		EARLYIMPACT : ProductCart
		YABB : YaBB 1.5
		CGIEMAIL : cgiemail 1.6
		MONOGOSEARCH : mnogosearch 3.2
		ASPPORTAL : ASP Portal
		ALLMYGUESTS : AllMyGuests
		ALLMYVISITORS : AllMyVisitors
		ALLMYLINK : AllMyLinks
		YABB : YaBB 1.3
		GGMATE : ShopCartCGI 2.3
		ECOMMERCE : Online Store Kit 3.0
		OWLS : OWLS 1.0
		WEBCORTEX : Webstores2000 6.0
		PBDB : PunkBuster

Original document		Just1n T1mberlake, PunkBuster SQL Injection Attack (20.02.2004)
		Nick Gudov, WebCortex Webstores2000 version 6.0 multiple security vulnerabilities (18.02.2004)
		ZetaLabs, ZH2004-07SA (security advisory): Multiple Sql injection vulnerabilities in Online Store Kit 3.0 Products (Lite - Standard and Pro) (18.02.2004)
		SECURITEAM, [UNIX] OWLS Remote Arbitrary Files Disclosure (18.02.2004)
		SECURITEAM, [UNIX] Online Store Kit SQL Injection Vulnerability (17.02.2004)
		ZetaLabs, ZH2004-06SA (security advisory): ShopCartCGI v2.3 Remote arbitrary file retrieving (17.02.2004)
		David Cantrell, YABB information leakage on failed login (17.02.2004)
		backspace, Another YabbSE SQL Injection (17.02.2004)
		Pablo Santana, AllMyLinks PHP Code Injection vulnerability (17.02.2004)
		Pablo Santana, AllMyVisitors PHP Code Injection vulnerability (17.02.2004)
		Pablo Santana, AllMyGuests PHP Code Injection vulnerability (17.02.2004)
		S-Quadra Security Research, [Full-Disclosure] EarlyImpact ProductCart shopping cart software multiple security vulnerabilities (17.02.2004)
		Manuel López, ASP Portal Multiple Vulnerabilities (16.02.2004)
		Jedi/Sector One, Buffer overflow in mnoGoSearch (16.02.2004)
		DEBIAN, [SECURITY] [DSA 437-1] New cgiemail packages fix open mail relaying (16.02.2004)
		Jamie Fisher, Cross Site Scripting in VBulletin forum software (16.02.2004)
		Rafel Ivgi, vBulletin PHP Forum Version (16.02.2004)

Discuss:

Read or add your comments to this news (0 comments)