SANS @RISK

Syndicate content SANS RSS Feed
All Updates From Vol: 9 - Issue: 35
URL: http://www.sans.org/newsletters/risk/display.php
Updated: 19 min 21 sec ago

10.32.106 MyBB Advanced Stats Plugin Multiple HTML Injection Issues

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Web Application

Categories: Security Alerts

10.32.107 Theeta CMS Multiple Cross-Site Scripting and SQL Injection Vulnerabilities

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Web Application

Categories: Security Alerts

10.32.108 Drupal Tagging Module Free tagging Vocabularies HTML Injection

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Web Application

Categories: Security Alerts

10.32.109 PHP Photo Gallery Remote Command Execution and Remote File Include

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Web Application

Categories: Security Alerts

10.32.110 SF ToutVirtual VirtualIQ Pro Multiple Remote Command Execution Issues

Tue, 2010-08-10 06:00

CVEs: CVE: CVE-2009-4843

Platform: Web Application

Categories: Security Alerts

10.32.111 PHP Traverser "mp3_id.php" Remote File Include issue

Tue, 2010-08-10 06:00

CVEs: CVE: CVE-2009-4085

Platform: Web Application

Categories: Security Alerts

10.32.112 ZEEWAYS ZeeNetworking "member_photo.php" Arbitrary File Upload

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Web Application

Categories: Security Alerts

10.32.113 MC Content Manager SQL Injection and Cross-Site Scripting Issue

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Web Application

Categories: Security Alerts

10.32.114 Viscacha "editprofile.php" HTML Injection Issue

Tue, 2010-08-10 06:00

CVEs: CVE: CVE-2009-4567

Platform: Web Application

Categories: Security Alerts

10.32.115 PHPIDS "unserialize()" PHP Code Execution

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Web Application

Categories: Security Alerts

10.32.116 Mundi Mail Multiple Remote Command Execution Vulnerabilities

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Web Application

Categories: Security Alerts

10.32.117 Portili Personal and Team Wiki Multiple Security Issues

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Web Application

Categories: Security Alerts

10.32.118 Theeta CMS SQL Injection and Multiple Cross-Site Scripting Vulnerabilities

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Web Application

Categories: Security Alerts

10.32.119 Jira Cross-Site Scripting and Information Disclosure Vulnerabilities

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Web Application

Categories: Security Alerts

10.32.120 nuBuilder "report.php" Remote File Include

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Web Application

Categories: Security Alerts

10.32.121 Piwik Remote File Include Issue

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Web Application

Categories: Security Alerts

10.32.122 Loggix "pathToIndex" Parameter Multiple Remote File Include

Tue, 2010-08-10 06:00

CVEs: CVE: CVE-2009-3492

Platform: Web Application

Categories: Security Alerts

10.32.123 Mantis Attachment HTML Injection

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Web Application

Categories: Security Alerts

10.32.124 PMSoftware Simple Web Server "From:" Header Processing Remote Denial Of Service Issue

Tue, 2010-08-10 06:00

CVEs: CVE: Not Available

Platform: Web Application

Categories: Security Alerts

10.32.48 Rumba XML "index.php" Cross-Site Scripting Issue

Tue, 2010-08-10 06:00

CVEs: CVE: CVE-2009-4403

Platform: Web Application - Cross Site Scripting

Categories: Security Alerts