CGI bugs updated since 10.11.2004
Published:		13.11.2004
Source:
SecurityVulns ID:		4170
Type:		remote
Level:		5/10

Affected:		WEBCALENDAR : WebCalendar 0.9
		PHPBB : phpBB 2.0
		VBULLETIN : vBulletin 3.0
		PHPWEBSITE : phpWebSite 0.9
		PHORUM : Phorum 5.0
		MANTIS : Mantis 0.19
		EGROUPWARE : eGroupWare 1.0
		JAF : JAF CMS 3.0
		NUCLEUS : Nucleus 3.1
		INFUSEUM : Infuseum ASP Message Board 2.2
		PHPBT : PHP Bug Traq 0.9
		TWIKI : TWiki 20030201

Original document		Hans Ulrich Niedermann, [Full-Disclosure] TWiki search function allows arbitrary shell command execution (13.11.2004)
		jessica soules, phpBB Code EXEC (v2.0.10) (13.11.2004)
		jessica soules, SQL Injection in phpBT (bug.php) (13.11.2004)
		VBULLETIN, Vulnerability not with vBulletin (13.11.2004)
		Janek Vind, [waraxe-2004-SA#037 - Sql injection bug in Phorum 5.0.12 and older versions] (13.11.2004)
		Maestro De-Seguridad, security hole (http response splitting) in phpwebsite (13.11.2004)
		Dr. Death, SQL injection in vBulletin forums (last10.php) (13.11.2004)
		MANTIS, [SA13111] Mantis Information Disclosure Vulnerabilities (11.11.2004)
		SECUNIA, [SA13137] Infuseum ASP Message Board Unspecified Cross-Site Scripting and SQL Injection (11.11.2004)
		SECUNIA, [SA13136] Nucleus Unspecified Cross-Site Scripting and SQL Injection (11.11.2004)
		SECUNIA, [SA13110] eGroupWare Unspecified "JiNN" Vulnerability (11.11.2004)
		Jose Antonio, Multiple Vulnerabilities in WebCalendar (11.11.2004)
		y3dips_(at)_www.securityfocus.com, Vulnerabilities in JAF CMS (10.11.2004)

Discuss:

Read or add your comments to this news (0 comments)