PHP/ASP/CGI web applications security bugs updated since 08.02.2005
Published:		12.02.2005
Source:
SecurityVulns ID:		4448
Type:		remote
Level:		5/10
Description:		PHP inclusions, SQL injections, directory traversals, crossite scripting, etc.

Affected:		WWWBOARD : WWWboard 2.0
		WORDPRESS : WordPress 1.2
		PHPFUSION : PHP-Fusion 4.01
		WWWBOARD : WWWBoard 2.1
		PERLDESK : PerlDesk 1.0
		CHIPMUNK : Chipmunk forum
		BXCP : BXCP 0.3
		CMSCORE : CMSCore
		XGB : xGB 2.0
		MYPHP : MyPHP 1.0
		ASPJAR : ASPJar 1.0

Original document		farhad koosha, ASPjar guestbook (Injection in login page) (12.02.2005)
		SECUNIA, [SA14205] MyPHP Forum Multiple SQL Injection Vulnerabilities (11.02.2005)
		hio hou, [Full-Disclosure] XSS VULNERABILITY AT MODULE PostWrap (09.02.2005)
		SECUNIA, [SA14181] xGB Administrative User Authentication Bypass Vulnerability (09.02.2005)
		SECUNIA, [SA14142] CMScore Multiple SQL Injection Vulnerabilities (09.02.2005)
		SECUNIA, [SA14141] BXCP "show" Local File Inclusion Vulnerability (09.02.2005)
		SECURITEAM, [UNIX] Multiple SQL Injection Vulnerabilties in Chipmunk Forum (09.02.2005)
		thegreatone2176_(at)_yahoo.com, php-fusion 4.x vuln (08.02.2005)
		deluxe_(at)_security-project.org, [SePro Bugtraq] SQL-Injection in PerlDesk 1.x (08.02.2005)
		kreon, WordPress 1.2.x SQL Injection Advisory (08.02.2005)
		kreon, WordPress 1.2.x XSS Advisory (08.02.2005)
		Pedram hayati, [PersianHacker.NET 200502-05] WWWoard passwd (08.02.2005)

Discuss:

Read or add your comments to this news (0 comments)