Информационная безопасность
[RU] switch to English


Cводка уязвимостей безопасности в Web-приложениях (PHP, ASP, JSP, CGI, Perl)
Опубликовано:15 июля 2013 г.
Источник:
SecurityVulns ID:13172
Тип:удаленная
Уровень опасности:
5/10
Описание:Инъекции PHP, инъекции SQL, обратный путь в каталогах, межсайтовый скриптинг, модификация файлов, утечка информации и т.д.
Затронутые продукты:OPENX : OpenX 2.8
 APACHE : Struts 2.3
 APACHE : CXF 2.5
 WORDPRESS : WordPress 3.5
 BMC : BMC SERVICE DESK EXPRESS 10.2
 CORDA : Corda Server .NET Redirector 7.3
 TINYMCE : TinyMCE Image Manager 1.1
 ALMACOR : aCMS 1.0
 JOOMLA : aiContactSafe 2.0
 APACHE : CXF 2.7
 APACHE : CXF 2.6
 AIRDRIVEPLUS : Air Drive Plus 2.4
 KASSELER : Kasseler CMS 2
 OTRS : otrs 3.2
 EXPONENT : Exponent CMS 2.2
 BOONEX : Dolphin 7.1
 XARAYA : Xaraya 2.4
 MAGNOLIA : Magnolia CMS 4.5
 APACHE : Geronimo 3.0
 JOOMLA : Joomla 3.1
 CTERA : CTERA Portal 3.1
 WEATHERMAP : Weathermap 0.97
 TELAEN : Telaen 1.3
 SAURUS : Saurus CMS 4.7
CVE:CVE-2013-4621
 CVE-2013-4088
 CVE-2013-3739 (Directory traversal vulnerability in editor.php in Network Weathermap 0.97c and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the mapname parameter in a show_config action.)
 CVE-2013-3729 (Multiple cross-site request forgery (CSRF) vulnerabilities in Kasseler CMS before 2 r1232 allow remote attackers to hijack the authentication of administrators for requests that conduct SQL injection attacks via the (1) groups[] parameter in a send action in the sendmail module or (2) query parameter in a sql_query action in the database module to admin.php, related to CVE-2013-3727.)
 CVE-2013-3728 (Cross-site scripting (XSS) vulnerability in Kasseler CMS before 2 r1232 allows remote authenticated users with permissions to create categories to inject arbitrary web script or HTML via the cat parameter in an admin_new_category action to admin.php.)
 CVE-2013-3727 (SQL injection vulnerability in Kasseler CMS before 2 r1232 allows remote authenticated users to execute arbitrary SQL commands via the groups[] parameter to admin.php. NOTE: this can be leveraged using CSRF to allow remote unauthenticated attackers to execute arbitrary SQL commands.)
 CVE-2013-3639 (Multiple cross-site scripting (XSS) vulnerabilities in Xaraya 2.4.0-b1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) id, (2) interface, (3) name, or (4) tabmodule parameter to index.php.)
 CVE-2013-3638
 CVE-2013-3637
 CVE-2013-3636
 CVE-2013-3635
 CVE-2013-3551
 CVE-2013-3515 (Multiple cross-site scripting (XSS) vulnerabilities in OpenX Source 2.8.10 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) package parameter to www/admin/plugin-index.php or the (2) group parameter to www/admin/plugin-settings.php.)
 CVE-2013-3514 (Multiple directory traversal vulnerabilities in OpenX before 2.8.10 revision 82710 allow remote administrators to read arbitrary files via a .. (dot dot) in the group parameter to (1) plugin-preferences.php or (2) plugin-settings.php in www/admin, a different vulnerability than CVE-2013-7376. NOTE: this can be leveraged using CSRF to allow remote unauthenticated attackers to read arbitrary files.)
 CVE-2013-3295 (Directory traversal vulnerability in install/popup.php in Exponent CMS before 2.2.0 RC1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter.)
 CVE-2013-3294 (Multiple SQL injection vulnerabilities in Exponent CMS before 2.2.0 release candidate 1 allow remote attackers to execute arbitrary SQL commands via the (1) src or (2) username parameter index.php.)
 CVE-2013-2624
 CVE-2013-2623
 CVE-2013-2621
 CVE-2013-1777 (The JMX Remoting functionality in Apache Geronimo 3.x before 3.0.1, as used in IBM WebSphere Application Server (WAS) Community Edition 3.0.0.3 and other products, does not property implement the RMI classloader, which allows remote attackers to execute arbitrary code by using the JMX connector to send a crafted serialized object.)
 CVE-2012-6458 (Multiple cross-site scripting (XSS) vulnerabilities in the SilverStripe e-commerce module 3.0 for SilverStripe CMS allow remote attackers to inject arbitrary web script or HTML via the (1) FirstName, (2) Surname, or (3) Email parameter to code/forms/OrderFormAddress.php; or the (4) FirstName or (5) Surname parameter to code/forms/ShopAccountForm.php.)
Оригинальный текстdocumentJanek Vind, [waraxe-2013-SA#106] - Multiple Vulnerabilities in Saurus CMS 4.7.1 (15.07.2013)
 documentISecAuditors Security Advisories, [ISecAuditors Security Advisories] Multiple Vulnerabilities in Telaen <= 1.3.0 (15.07.2013)
 documentAnthony Dubuissez, CVE-2013-3739 Local File Inclusion in Weathermap <= 0.97C (15.07.2013)
 documentSEC Consult Vulnerability Lab, SEC Consult SA-20130605-0 :: Multiple vulnerabilities in CTERA Portal (15.07.2013)
 documentAPACHE, [ANN] Struts 2.3.14.3 GA (fast-track) release available (15.07.2013)
 documentAPACHE, [ANN] Struts 2.3.14.1 GA (fast track | security) (15.07.2013)
 documentprairie_(at)_mailinator.com, Barnraiser Prairie OpenID idp: Directory traversal attack (15.07.2013)
 documentMarco Beierer, Joomla crypto vulnerability (all versions) (15.07.2013)
 documentJarek Gawor, [SECURITY] CVE-2013-1777: Apache Geronimo 3 RMI classloader exposure (15.07.2013)
 documentAdrian Furtuna, [Full-disclosure] Magnolia CMS multiple access control vulnerabilities (15.07.2013)
 documentHigh-Tech Bridge Security Research, Multiple XSS Vulnerabilities in Xaraya (15.07.2013)
 documentHigh-Tech Bridge Security Research, SQL Injection in Dolphin (15.07.2013)
 documentHigh-Tech Bridge Security Research, Multiple Vulnerabilities in Exponent CMS (15.07.2013)
 documentMANDRIVA, [ MDVSA-2013:188 ] otrs (15.07.2013)
 documentHigh-Tech Bridge Security Research, Multiple Vulnerabilities in OpenX (15.07.2013)
 documentHigh-Tech Bridge Security Research, Multiple Vulnerabilities in Kasseler CMS (15.07.2013)
 documentVulnerability Lab, Air Drive Plus v2.4 iOS - Arbitrary File Upload Vulnerability (15.07.2013)
 documentCarl Benedict, Re: Project Pier Web Vulnerabilities (15.07.2013)
 documentSEC Consult Vulnerability Lab, SEC Consult SA-20130709-0 :: Denial of service vulnerability in Apache CXF (15.07.2013)
 documentJose Carlos de Arriba, [Foreground Security 2013-001]: Joomla AICONTACTSAFE 2.0.19 Extension Cross-Site Scripting (XSS) vulnerability (15.07.2013)
 documentMustLive, Multiple vulnerabilities in aCMS (15.07.2013)
 documentMustLive, IA and AFU vulnerabilities in aCMS (15.07.2013)
 documentMustLive, XSS, CS and FPD vulnerabilities in I Love It theme for WordPress (15.07.2013)
 documentMustLive, CS, XSS and FPD vulnerabilities in WordPress (15.07.2013)
 documentMustLive, XSS and CS vulnerabilities in TinyMCE Image Manager (15.07.2013)
 documentAdam Willard, [Foreground Security 2013-002]: Corda Path Disclosure and XSS (15.07.2013)
 documentNCIRC INFOSEC EVAL, Multiple vulnerabilities in BMC SERVICE DESK EXPRESS (SDE) Version 10.2.1.95 (15.07.2013)

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород