Информационная безопасность
[RU] switch to English


Ежедневная сводка ошибок в Web-приложениях (PHP, ASP, JSP, CGI, Perl )
Опубликовано:2 апреля 2007 г.
Источник:
SecurityVulns ID:7521
Тип:удаленная
Уровень опасности:
5/10
Описание:Инъекции PHP, инъекции SQL, обратный путь в каталогах, межсайтовый скриптинг, утечка информации и т.д.
Затронутые продукты:JSBOARD : jsboard 2.0
 IPHOTOALBUM : iPhotoAlbum 1.1
 FLYSPRAY : Flyspray 0.9
 SBLOG : sBlog 0.7
 PHPBB : Forum picture and META tags 1.7 module for phpBB
 JCCORP : Urlshrink 1.3
 PICTUREENGINE : Picture-Engine 1.2
 CODEBB : CodeBB 1.0
 MANGOBERY : Mangobery 0.5
 AYSYSTEM : Web Content System 2.7
 PHPNUKE : Eve-Nuke 0.1 module for PHP-Nuke
 OVERLAYWEAVER : Overlay Weaver 0.5
 AWCREATOR : Advanced Website Creator 1.8
 JBROWSER : JBrowser 2.4
CVE:CVE-2007-1842 (Directory traversal vulnerability in login.php in JSBoard before 2.0.12 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the table parameter, as demonstrated by injecting PHP sequences into an Apache HTTP Server log file, a related issue to CVE-2006-2019.)
 CVE-2007-1839 (Multiple PHP remote file inclusion vulnerabilities in CodeBB 1.1b3 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter to (1) pass_code.php or (2) lang_select.)
 CVE-2007-1837 (Multiple PHP remote file inclusion vulnerabilities in MangoBery CMS 0.5.5 allow remote attackers to execute arbitrary PHP code via a URL in the Site_Path parameter to (1) boxes/quotes.php or (2) templates/mangobery/footer.sample.php.)
 CVE-2007-1818 (PHP remote file inclusion vulnerability in MOD_forum_fields_parse.php in the Forum picture and META tags 1.7 module for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.)
 CVE-2007-1801 (Directory traversal vulnerability in inc/lang.php in sBLOG 0.7.3 Beta allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the conf_lang_default parameter, as demonstrated by injecting PHP sequences into an Apache HTTP Server log file, which is then included by inc/lang.php.)
 CVE-2007-1796 (Multiple unspecified vulnerabilities in JCcorp URLshrink before 1.3.2 have unspecified attack vectors and impact.)
 CVE-2007-1795 (JCcorp URLshrink 1.3.1 allows remote attackers to execute arbitrary PHP code via the email address field in an HTML link. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.)
 CVE-2007-1791 (SQL injection vulnerability in wall.php in Picture-Engine 1.2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the cat parameter.)
 CVE-2007-1790 (Multiple PHP remote file inclusion vulnerabilities in Kaqoo Auction Software Free Edition allow remote attackers to execute arbitrary PHP code via a URL in the install_root parameter to (1) support.inc.php, (2) function.inc.php, (3) rdal_object.inc.php, (4) rdal_editor.inc.php. (5) login.inc.php, (6) request.inc.php, and (7) categories.inc.php in include/core/; (8) save.inc.php, (9) preview.inc.php, (10) edit_item.inc.php, (11) new_item.inc.php, and (12) item_info.inc.php in include/display/item/; (13) search.inc.php, (14) item_edit.inc.php, (15) register_succsess.inc.php, (16) context_menu.inc.php, (17) item_repost.inc.php, (18) balance.inc.php, (19) featured.inc.php, (20) user.inc.php, (21) buynow.inc.php, (22) install_complete.inc.php, (23) fees_info.inc.php, (24) user_feedback.inc.php, (25) admin_balance.inc.php, (26) activate.inc.php, (27) user_info.inc.php, (28) member.inc.php, (29) add_bid.inc.php, (30) items_filter.inc.php, (31) my_info.inc.php, (32) register.inc.php, (33) leave_feedback.inc.php, and)
 CVE-2007-1789 (Flyspray 0.9.9 allows remote attackers to obtain sensitive information (private project summaries) via direct requests.)
 CVE-2007-1788 (Flyspray 0.9.9, when output_buffering is disabled or "set to a low value," allows remote attackers to bypass authentication via a crafted post request.)
 CVE-2007-1780 (Cross-site scripting (XSS) vulnerability in the DHT shell (owdhtshell) in Overlay Weaver 0.5.9 to 0.5.11, when invoked with the -x option, allows remote attackers to inject arbitrary web script or HTML via fields in certain input forms.)
 CVE-2007-1779 (Multiple SQL injection vulnerabilities in the MySQL back-end in Advanced Website Creator (AWC) before 1.9.0 might allow remote attackers to execute arbitrary SQL commands via unspecified parameters, related to use of mysql_escape_string instead of mysql_real_escape_string.)
 CVE-2007-1778 (PHP remote file inclusion vulnerability in db/mysql.php in the Eve-Nuke 0.1 (EN-Forums) module for PHP-Nuke allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.)
 CVE-2007-1775 (Unrestricted file upload vulnerability in upload.php3 in JBrowser 2.4 and earlier allows remote attackers to upload and execute arbitrary PHP code via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.)
 CVE-2007-1774 (Multiple cross-site scripting (XSS) vulnerabilities in aBitWhizzy allow remote attackers to inject arbitrary web script or HTML via the d parameter to (1) whizzery/whizzypic.php or (2) whizzery/whizzylink.php.)
 CVE-2007-1773 (Multiple directory traversal vulnerabilities in aBitWhizzy allow remote attackers to list arbitrary directories via a .. (dot dot) in the d parameter to (1) whizzery/whizzypic.php or (2) whizzery/whizzylink.php, different vectors than CVE-2006-6384.)
 CVE-2007-1771 (PHP remote file inclusion vulnerability in manage/javascript/formjavascript.php in Ay System Solutions Web Content System (WCS) 2.7.1 allows remote attackers to execute arbitrary PHP code via a URL in the path[JavascriptEdit] parameter.)
Оригинальный текстdocumentThE TiGeR, Eve-NukePortal file include (phpbb_root_path) (02.04.2007)
 documentkezzap66345, MangoBery CMS 0.5.5 (quotes.php) Remote File Inclusion Vulnerability (02.04.2007)
 documentAlkomandoz Hacker, codebb 1.1b3 (phpbb_root_path )Remote File Include Vulnerability (02.04.2007)
 documentThE [email protected], Kaqoo Auction (install_root) Multiple Remote File Include Vulnerabilities (02.04.2007)
 documentDj7xpl, JC URLshrink 1.3.1 Remote Code Execution Vulnerability (02.04.2007)
 documentbd0rk_(at)_hackermail.com, phpBB Module Forum picture and META tags 1.7 File Include Vulnerability (02.04.2007)
 documentGolD_M, iPhotoAlbum v1.1(header.php)Remote File Include Vulnerability (02.04.2007)
Файлы:jsboard 2.0.10(login.php table)Local File Inclusion Exploit
 sBLOG 0.7.3 Beta(inc/lang.php)Local File Inclusion Exploit
 Picture-Engine <= V1.2.0 Remote SQL Injection Exploit
 Web Content System <<< v2.7.1 Remote File Include Exploit Remote File Include Exploit

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород