|
PHP, ASP, CGI web applications security vulnerabilities
updated since 03.05.2005 | | Published: |  | 07.05.2005 | | Source: |  | | | SecurityVulns ID: |  | 4759 | | Type: |  | remote | | Level: |  | 5/10 | | Description: |  | PHP inclusions, SQL injections, directory traversals, crossite scripting, etc. |
| Affected: |  | MEGABOOK : MegaBook 2.0 | | | | INVISION : Invision Power Board 2.0 | | | | WEBCROSSING : Web Crossing 5.0 | | | | HOSTINGCONTROLLE : Hosting Controller 6.1 | | | | E107 : E107 0.617 | | | | ARTICLELIVE : ArticleLive 2005 | | | | MYBLOGGIE : myBloggie 2.1 | | | | VIART : ViArt Shop Enterprise 2.1 | | | | PLANSCALENDAR : Plans 6.7 | | | | SITEPANEL : SitePanel 2.6 | | | | BIRDBLOG : BirdBlog 1.3 | | | | OSTICKET : osTicket 1.0 | | | | FISHCART : Fishcart 3.1 | | | | ESKUEL : eSKUeL 1.0 | | | | AARONOUTPOST : ASP Inline Corporate Calendar 3.6 | | | | YUSASP : YusASP Web Asset Manager 1.0 | | | | PHPATM : PHP Advanced Transfer Manager 1.21 | | | | GROSSAMERTHREADS : Links SQL 3.0 | | | | MIDICART : MidiCart PHP | | | | IMALL : I-Mall Commerce | | | | CJULTRA : CJ Ultra Plus 1.0 |
| Original document |  | Kold, Sql Injection in CJ Ultra Plus v1.0.3-1.0.4 (07.05.2005) |
| | | JeiAr, Multiple Vulnerabilities In Invision Power Board (07.05.2005) |
| | | Heintz, Multiple vulnearabilities in e107 cms (07.05.2005) |
| | | SECURITEAM, [EXPL] I-Mall Commerce i-mall.cgi Arbitrary Command Execution (Exploit) (06.05.2005) |
| | | Nathan House, [Full-disclosure] Statcounter Script Injection User Session Hijack (06.05.2005) |
| | | Exoduks, [hackgen-2005-#004] - Multiple bugs in MidiCart PHP Shopping Cart (06.05.2005) |
| | | Alberto Trivero, Multiple vulnerabilities in myBloggie 2.1.1 (06.05.2005) |
| | | Spy Hat, MegaBook V2.0 - Cross Site Scripting Exploit (06.05.2005) |
| | | Nathan House, Gossamer Threads Links SQL login XSS Vulnerability (06.05.2005) |
| | | dcrab_(at)_hackerscenter.com, Authentication bypass, sql injections and xss in ArticleLive 2005 (06.05.2005) |
| | | Zinho, [HSC Security Group] ASP Inline Corporate Calendar SQL injection (06.05.2005) |
| | | tjomi4_(at)_gmail.com, PHP Advanced Transfer Manager v1.21 (06.05.2005) |
| | | SECURITEAM, [NT] YusASP Web Asset Manager Vulnerability (04.05.2005) |
| | | small mouse, Hosting Controller unauthenticated user registeration (04.05.2005) |
| | | SECUNIA, [SA15239] ASP Inline Corporate Calendar "Event_ID" SQL Injection (04.05.2005) |
| | | SECUNIA, [SA15208] eSKUeL "ConfLangCookie" and "lang_config" Local File Inclusion (04.05.2005) |
| | | SECUNIA, [SA15232] FishCart Cross-Site Scripting and SQL Injection Vulnerabilities (04.05.2005) |
| | | durito, чтение файлов в скриптах printversion.pl и textversion.pl (04.05.2005) |
| | | Rodrigo Gutierrez, [Full-disclosure] NIC Chile CGI Script Zone Transfers (04.05.2005) |
| | | SECUNIA, [SA15206] BirdBlog BB Code Script Insertion Vulnerability (03.05.2005) |
| | | SECUNIA, [SA15213] SitePanel Multiple Vulnerabilities (03.05.2005) |
| | | SECUNIA, [SA15218] Web Crossing "webx" Cross-Site Scripting Vulnerability (03.05.2005) |
| | | SECUNIA, [SA15167] Plans Cross-Site Scripting and Password Disclosure Vulnerabilities (03.05.2005) |
| | | SECUNIA, [SA15181] ViArt Shop Enterprise Cross-Site Scripting and Script Insertion (03.05.2005) |
|
|
|
|
|
