Информационная безопасность
[RU] switch to English


Ежедневная сводка ошибок в Web-приложениях (PHP, ASP, JSP, CGI, Perl )
Опубликовано:19 октября 2006 г.
Источник:
SecurityVulns ID:6726
Тип:удаленная
Уровень опасности:
5/10
Описание:Инъекции PHP, инъекции SQL, обратный путь в каталогах, межсайтовый скриптинг, утечка информации и т.д.
Затронутые продукты:PHPBB : phpBB 2.0
 PHPADSNEW : phpAdsNew 2.0
 ZORUM : zorum 3.5
 PHPLIST : phpList 2.10
 SIMPLOG : simplog 0.9
 TORRENTXLUX : TorrentFlux 2.1
 LODEL : patchlodel 0.7
 PHPFORGE : PHP Forge 3b2
 OSPREY : osprey 1.0
 COMDEV : Comdev One Admin 4.1
 BOONEX : Boonex Dolphin 5.2
 PPOPN : P-Book
 CSFORUM : CS-Forum 0.82
 PHPRECIPEBOOK : PHPRecipeBook 2.35
 WEVWEB : DEV Web Manager System 1.5
 JOOMLA : Joomla BSQ Sitestats 1.8
 JOOMLA : Joomla BSQ Sitestats 2.0
Оригинальный текстdocumentCorryL, {x0n3-h4ck} DEV Web Manager System <= 1.5 XSS Exploit (19.10.2006)
 documentCarcaBotx_(at)_yahoo.com, PHPRecipeBook <= 2.35 ((g_rb_basedir)) Remote File Include Exploit (19.10.2006)
 documentmahmood ali, PhpBB<=2.0.10 (groupcp.php) Remote File Include Vulnerability (19.10.2006)
 documentmahmood ali, CS-Forum 0.82 (ajouter.php) Remote File Include Vulnerability (19.10.2006)
 documenterdc_(at)_echo.or.id, [ECHO_ADV_46$2006] P-Book <= 1.17 (pb_lang) Remote File Inclusion (19.10.2006)
 documentxp1o_(at)_msn.com, zorum_3_5 <=(dbproperty.php) Remote File Inclusion Exploit (19.10.2006)
 documentdisfigure, Simplog 0.9.3.1 SQL Injection (19.10.2006)
 documentdisfigure, Boonex Dolphin 5.2 Remote File Inclusion (19.10.2006)
 documentdisfigure, Comdev One Admin 4.1 Remote File Inclusion (19.10.2006)
 documentwacky_(at)_ihack.pl, phpAdsNew include bug! (19.10.2006)
 documenterdc_(at)_echo.or.id, [ECHO_ADV_55$2006]Phpmybibli <=2.1 Multiple Remote File Inclusion Vulnerability (19.10.2006)
 document3cab7cc7_(at)_srasg.stevenroddis.com.au, TorrentFlux ?user_id? Script Insertion (19.10.2006)
 document3cab7cc7_(at)_srasg.stevenroddis.com.au, TorrentFlux ?file? Script Insertion (19.10.2006)
 document3cab7cc7_(at)_srasg.stevenroddis.com.au, TorrentFlux ?action? Script Insertion (19.10.2006)
 documentthe-free_kernel_(at)_b0rizq.net, [Xss] IN phplist v 2.10.2 (19.10.2006)
 documentKaBaRa.HaCk.eGy_(at)_Gmail.com, osprey 1.0 (ListRecords.php) Remote File Include Vulnerability (19.10.2006)
 documentmahmood ali, PHP Forge 3b2 (/inc/inc.php) Remote File Include Vulnerability (19.10.2006)
 documentmahmood ali, PHP Forge 3b2 (/inc/inc.php) Remote File Include Vulnerability (19.10.2006)
 documenterne_(at)_ernealizm.com, patchlodel-0.7.3 - Remote File Include Vulnerabilities (19.10.2006)
 documentxx_hack_xx_2004_(at)_hotmail.com, Full Path Disclosure in PHP-Wyana (2) (19.10.2006)

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород