Section: .. / 0605-advisories /
| /// File Name: |
ToastsForums1.6.44.txt |
Description:
|
Toast Forums 1.6.44 suffers from XSS
| | Author: | ajannhwt | | File Size: | 510 | | Last Modified: | May 29 03:18:49 2006 |
| MD5 Checksum: | ee1a39595f4a20ca27cb078cfcd77b01 |
|
| /// File Name: |
mybbv1.1.1.txt |
Description:
|
mybb v1.1.1 suffers from SQL injection in showthread.php
| | Author: | Breeeeh | | Homepage: | http://www.alshmokh.com | | File Size: | 509 | | Last Modified: | May 17 18:13:25 2006 |
| MD5 Checksum: | 4ca89ced094e0db4126d314ef4daecba |
|
| /// File Name: |
newsportal.txt |
Description:
|
A code injection vulnerability exists in NewsPortal. Upgrading to 0.37 fixes this flaw.
| | Author: | Florian Amrhein | | File Size: | 505 | | Last Modified: | May 22 01:00:00 2006 |
| MD5 Checksum: | 1acae219c7a96b149be91dedf88f004a |
|
| /// File Name: |
PrettyGuestbookv1.txt |
Description:
|
Pretty Guestbook v1 suffers from XSS in view.php
| | Author: | luny | | File Size: | 502 | | Last Modified: | May 29 03:37:49 2006 |
| MD5 Checksum: | e8348862048f94f4e06f67345494ed7b |
|
| /// File Name: |
WGR614.txt |
Description:
|
If the Netgear WGR614 Cable/DSL Wireless Router is configured to backup configuration settings, the device will store various information in cleartext. Accessing this file could allow an attacker to obtain sensitive information which could aid the attacker in compromising the web administration interface of the device, DSL/cable account passwords etc.
| | Author: | info | | File Size: | 496 | | Last Modified: | May 25 21:19:19 2006 |
| MD5 Checksum: | 5025cb5dff834832cef0e6fc103f8e15 |
|
| /// File Name: |
DoceboLMS2.05.txt |
Description:
|
Docebo LMS 2.05 suffers from a remote file inclusion vulnerability.
| | Author: | beford | | File Size: | 471 | | Last Modified: | May 29 03:27:38 2006 |
| MD5 Checksum: | 3e9fb7293168e2c691805d5de44eab40 |
|
| /// File Name: |
phpjobboard.txt |
Description:
|
phpjobboard allows anyone to edit or add a new job by bypassing the administration login.
| | Author: | alp_eren | | File Size: | 447 | | Last Modified: | May 29 03:20:43 2006 |
| MD5 Checksum: | 06823dd39e7f67da8ffca3beeb1cb56a |
|
| /// File Name: |
AlstraSoftE-Friends.txt |
Description:
|
Alstrasoft E-friends suffers from XSS in index.php.
| | Author: | luny | | File Size: | 441 | | Last Modified: | May 26 18:10:51 2006 |
| MD5 Checksum: | 8fabe870ca72379110a29888f08b445e |
|
| /// File Name: |
iBoutique.MALL.txt |
Description:
|
iBoutique.MALL suffers from a directory transversal vulnerability in the function variable.
| | Author: | luny | | File Size: | 435 | | Last Modified: | May 29 03:10:28 2006 |
| MD5 Checksum: | 05fe49494d505c07278e8cc5d2b8db62 |
|
| /// File Name: |
planetstat.txt |
Description:
|
plaNetStat is susceptible to an administrative bypass flaw.
| | Author: | alp_eren | | Homepage: | http://www.ayyildiz.org | | File Size: | 435 | | Last Modified: | May 21 13:43:41 2006 |
| MD5 Checksum: | ae7190d14ed63c7ac11376ba924983af |
|
| /// File Name: |
htmlsguestgear.txt |
Description:
|
html Guest Gear suffers from html injection and XSS.
| | Author: | pieisgdvgd | | File Size: | 422 | | Last Modified: | May 29 03:57:15 2006 |
| MD5 Checksum: | c5b0be96e2a2fce4e0a4ad609826ff16 |
|
| /// File Name: |
RusscomPHPImages.txt |
Description:
|
Russcom PHPImages doesn't validate if the uploaded file is an image, it just checks for the extension, thus allowing an attacker to upload php scripts with a .gif extension for example.
| | Author: | zerogue | | File Size: | 393 | | Last Modified: | May 26 18:07:43 2006 |
| MD5 Checksum: | beab3cc3ea5f47f0c4e8f3ebbfa87b7d |
|
| /// File Name: |
PHPcafe.net.txt |
Description:
|
PHPcafe.net Tutorial Manager v1.0 Beta 2 suffers from SQL injection.
| | Author: | black-cod3 | | File Size: | 390 | | Last Modified: | May 29 03:59:03 2006 |
| MD5 Checksum: | cc262afa61fa1e3742e2f271f8ee816e |
|
| /// File Name: |
variomat.txt |
Description:
|
Variomat CMS suffers from multiple SQL injection vulnerabilities.
| | Author: | CrAzY.CrAcKeR | | File Size: | 376 | | Last Modified: | May 29 19:50:58 2006 |
| MD5 Checksum: | bb4579b80a85095859089d36d5c25e62 |
|
| /// File Name: |
AGTC-Membership-1.1a.tzt |
Description:
|
PHP AGTC-Membership system versions less than or equal to v1.1a suffers from XSS.
| | Author: | zerogue | | File Size: | 375 | | Last Modified: | May 29 03:01:39 2006 |
| MD5 Checksum: | 2a4135f91245b0d1e8c1b572de3fd3dc |
|
| /// File Name: |
IpLogger-1.7.txt |
Description:
|
IpLogger versions less than or equal to 1.7 suffer from XSS
| | Author: | zerogue | | File Size: | 365 | | Last Modified: | May 26 18:04:31 2006 |
| MD5 Checksum: | 4d37f1b5ed4939fbfec1ca55a57bf531 |
|
| /// File Name: |
qjForum.txt |
Description:
|
qjForum suffers from a SQL injection vulnerability in member.asp
| | Author: | ajannhwt | | File Size: | 365 | | Last Modified: | May 29 03:21:24 2006 |
| MD5 Checksum: | 6cf6709eea7139cb662717391af70866 |
|
| /// File Name: |
phpWebSite0.8.3.txt |
Description:
|
phpWebSite 0.8.3 suffers from SQL injection.
| | Author: | help-users | | File Size: | 357 | | Last Modified: | May 26 19:10:55 2006 |
| MD5 Checksum: | 8d54626b99af210ceda7db61dbf218ad |
|
| /// File Name: |
OzzyWorkGaleri.txt |
Description:
|
OzzyWork Gallery suffers from an administrative login bypass vulnerability.
| | Homepage: | http://www.milli-harekat.org | | File Size: | 348 | | Last Modified: | May 17 18:34:16 2006 |
| MD5 Checksum: | 7513d16edb50a4795d5daa64bf517bcd |
|
| /// File Name: |
DuGalleryV2.x.txt |
Description:
|
DUGallery v2.x suffers from a login bypass vulnerability.
| | Homepage: | http://www.milli-harekat.org | | File Size: | 340 | | Last Modified: | May 17 18:57:08 2006 |
| MD5 Checksum: | 4db4da06bbdd0a58bda690baa1e2facf |
|
| /// File Name: |
x7chat202.txt |
Description:
|
X7Chat versions 2.0.2 and below suffer from cross site scripting flaws.
| | Author: | Nomenumbra | | File Size: | 337 | | Last Modified: | May 6 18:18:04 2006 |
| MD5 Checksum: | 20c2a45c2c1298da369a5e797d01e731 |
|
| /// File Name: |
PlumeCMS.txt |
Description:
|
Plume CMS suffers from a remote file inclusion vulnerability.
| | Author: | beford | | File Size: | 335 | | Last Modified: | May 29 03:51:08 2006 |
| MD5 Checksum: | 9861bbe9624a2a3f262b97cd1296c902 |
|
| /// File Name: |
Insel.txt |
Description:
|
Omegasoft's Insel suffers from XSS and possible SQL injection vulnerabilities.
| | Author: | MC Iglo | | File Size: | 306 | | Last Modified: | May 29 03:50:16 2006 |
| MD5 Checksum: | 57861e87eb0e9c3bb4911f810161c252 |
|
| /// File Name: |
PHPResidence-0.6.txt |
Description:
|
PHPResidence versions less than or equal to 0.6 does not sanitize any of its input leading to many XSS vulnerabilities.
| | Author: | Nomenumbra | | File Size: | 306 | | Last Modified: | May 29 03:00:37 2006 |
| MD5 Checksum: | 78a434578af33fb00d63d81c37ecf780 |
|
| /// File Name: |
RusscomPing.txt |
Description:
|
Russcom's Ping script allows attackers to execute arbitrary code.
| | Author: | zerogue | | File Size: | 294 | | Last Modified: | May 26 18:08:31 2006 |
| MD5 Checksum: | 4e756f2146c8815a59fb4fe2dfb01f74 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
