Информационная безопасность
[RU] switch to English


Ежедневная сводка ошибок в Web-приложениях (PHP, ASP, JSP, CGI, Perl )
Опубликовано:3 января 2007 г.
Источник:
SecurityVulns ID:6986
Тип:удаленная
Уровень опасности:
5/10
Описание:Инъекции PHP, инъекции SQL, обратный путь в каталогах, межсайтовый скриптинг, утечка информации и т.д.
Затронутые продукты:WWWBOARD : WWWboard 2.0
 NUKEDKLAN : Nuked-Klan 1.7
 SPOOKYLOGIN : Spooky Login 2.7
 PHPIRCBOT : PHPIrc_bot 0.2
 FORMBANKSERVER : Formbankserver 1.9
 AUTODEALER : autoDealer 2.0
 GECKOVICH : TaskTracker 1.5
CVE:CVE-2007-0138 (formbankcgi.exe in Fersch Formbankserver 1.9, when the PATH_INFO begins with (1) AbfrageForm or (2) EingabeForm, allows remote attackers to cause a denial of service (daemon crash) via multiple requests containing many /../ sequences in the Name parameter. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.)
 CVE-2007-0083 (Cross-site scripting (XSS) vulnerability in Nuked Klan 1.7 and earlier allows remote attackers to inject arbitrary web script or HTML via a javascript: URI in a getURL statement in a .swf file, as demonstrated by "Remote Cookie Disclosure." NOTE: it could be argued that this is an issue in Shockwave instead of Nuked Klan.)
 CVE-2007-0079 (rblog stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for (1) data/admin.mdb or (2) data/rblog.mdb.)
 CVE-2007-0078 (BattleBlog stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for database/blankmaster.mdb.)
 CVE-2007-0077 (lblog stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for a certain file in admin/db/newFolder/.)
 CVE-2007-0076 (Openforum stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing user passwords via a direct request for openforum.mdb.)
 CVE-2007-0075 (AspBB stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing user passwords via a direct request for db/aspbb.mdb.)
 CVE-2007-0056 (Multiple cross-site scripting (XSS) vulnerabilities in AShop Deluxe 4.5 and AShop Administration Panel allow remote attackers to inject arbitrary web script or HTML via the (1) cat parameter to (a) ashop/catalogue.php and (b) ashop/basket.php, the (2) exp parameter to ashop/catalogue.php, the (3) searchstring parameter to (c) ashop/search.php, the (4) checkout and (5) action parameters to (d) ashop/shipping.php, the cat parameter to (f) cart-path/admin/editcatalogue.php, and the (7) resultpage parameter to (g) cart-path/admin/salesadmin.php.)
 CVE-2007-0055 (Directory traversal vulnerability in formbankcgi.exe/AbfrageForm in Formbankserver 1.9 allows remote attackers to read arbitrary files via directory traversal sequences in the Name parameter. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.)
 CVE-2007-0054 (Cross-site scripting (XSS) vulnerability in gbrowse.php in Belchior Foundry vCard PRO allows remote attackers to inject arbitrary web script or HTML via the sortby parameter.)
 CVE-2007-0053 (SQL injection vulnerability in detail.asp in ASP SiteWare autoDealer 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the iPro parameter.)
 CVE-2007-0052 (SQL injection vulnerability in haberdetay.asp in Vizayn Haber allows remote attackers to execute arbitrary SQL commands via the id parameter.)
 CVE-2007-0049 (Geckovich TaskTracker Pro 1.5 and earlier allows remote attackers to add administrative or other accounts via an Add action with a modified GroupID in a direct request to Customize.asp.)
Оригинальный текстdocumentKabusTR.coM , newsCMSlite (newsCMS.mdb) Remote Password Disclosure Vulnerablity (03.01.2007)
 documentbd0rk_(at)_hackermail.com, WWWBoard 2.0 Alpha 2 (passwd.txt) Password Disclosure Vulnerability (03.01.2007)
 documentajannhwt_(at)_hotmail.com, TaskTracker All Version Remote Add Admin Exploit (03.01.2007)
 documentajannhwt_(at)_hotmail.com, autoDealer <= 2.0 (iPro) Remote SQL Injection Vulnerability (03.01.2007)
 documentchernobiLe, Vizayn Haber (tr) == (tr) SQL Injection Vulnerability (03.01.2007)
 documentzooz_998_(at)_hotmail.com, PHPIrc_bot <= Remote File Include (03.01.2007)
 documentexexp_(at)_hotmail.com, vBulletin vCard PRO XSS (03.01.2007)
 documentAdvisory_(at)_Aria-Security.net, BattleBlog Database Download Vulnerability (03.01.2007)
 documentsn0oPy.team_(at)_gmail.com, golden book XSS (03.01.2007)
 documentAdvisory_(at)_Aria-Security.net, rblog Database Download Vulnerability (03.01.2007)
 documentHackers Center Security Group, AShop Shopping Cart Multiple XSS Vulnerabilities (03.01.2007)
 documentAdvisory_(at)_Aria-Security.net, lblog Remote Password Disclosure (03.01.2007)
 documentAdvisory_(at)_Aria-Security.net, Openforum Remote password Disclosure (03.01.2007)
 documentkadaj-diabolik_(at)_hotmail.fr, Nuked Klan <= 1.7 Remote Cookie Disclosure Exploit (03.01.2007)
 documentAdvisory_(at)_Aria-Security.net, AspBB Remote Password Disclosure (03.01.2007)
 documentHackers Center Security Group, Spooky Login Multiple HTML Injection Vulnerability (03.01.2007)
Файлы:Exploits formbankserver directory traversal

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород