Информационная безопасность
[RU] switch to English


Cводка уязвимостей безопасности в Web-приложениях (PHP, ASP, JSP, CGI, Perl)
Опубликовано:7 января 2011 г.
Источник:
SecurityVulns ID:11337
Тип:удаленная
Уровень опасности:
5/10
Описание:Инъекции PHP, инъекции SQL, обратный путь в каталогах, межсайтовый скриптинг, модификация файлов, утечка информации и т.д.
Затронутые продукты:JOOMLA : Joomla! 1.0
 APPHP : PHP MicroCMS 1.0
 PHPMYSPORT : phpMySport 1.4
 WONDERCMS : WonderCMS 0.3
 Compmaster : F3Site 2011
 PHENOTYPECMS : Phenotype CMS 3.0
 BLOGENGINENET : BlogEngine.NET 1.6
 WIKLINK : WikLink 0.1
 ACM : Ariadne Content Manager 4.4
 JOOSTINA : Joostina 1.3
Оригинальный текстdocumentMustLive, Cross-Site Scripting уязвимость в Joostina (07.01.2011)
 documentAndrea Purificato - bunker, [ACM, Ariadne Content Manager] unauth. SQL injection + user enumeration (07.01.2011)
 documentAliaksandr Hartsuyeu, www.eVuln.com : SQL Injection in WikLink (07.01.2011)
 documentAliaksandr Hartsuyeu, www.eVuln.com : "id" SQL Injection in WikLink (07.01.2011)
 documentDeniz CEVIK, BlogEngine.NET 1.6 Multiple Vulnerabilities (07.01.2011)
 documentYGN Ethical Hacker Group, Joomla! 1.0.x ~ 1.0.15 | Cross Site Scripting (XSS) Vulnerability (07.01.2011)
 documentHigh-Tech Bridge Security Research, Authentication bypass in phpMySport (07.01.2011)
 documentHigh-Tech Bridge Security Research, Path disclousure in phpMySport (07.01.2011)
 documentHigh-Tech Bridge Security Research, SQL Injection in phpMySport (07.01.2011)
 documentHigh-Tech Bridge Security Research, SQL Injection in Phenotype CMS (07.01.2011)
 documentHigh-Tech Bridge Security Research, SQL Injection in Phenotype CMS (07.01.2011)
 documentHigh-Tech Bridge Security Research, XSRF (CSRF) in PHP MicroCMS (07.01.2011)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in F3Site (07.01.2011)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in F3Site (07.01.2011)
 documentHigh-Tech Bridge Security Research, XSRF (CSRF) in F3Site (07.01.2011)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in F3Site (07.01.2011)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in F3Site (07.01.2011)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in WonderCMS (07.01.2011)
 documentHigh-Tech Bridge Security Research, SQL Injection in phpMySport (07.01.2011)
 documentHigh-Tech Bridge Security Research, SQL Injection in phpMySport (07.01.2011)
 documentHigh-Tech Bridge Security Research, XSS vulnerability in PHP MicroCMS (07.01.2011)

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород