The MKPortal Horoscop module suffers from a cross site scripting vulnerability.
6bafb5a7d79cc0a8866005031aa543abMonth Of PHP Security - PHP's iconv_mime_encode() function can be abused for information leak attacks, because of the call time pass by reference feature. This vulnerability also demonstrates that fixing zend_parse_parameters() is not enough to kill some of these vulnerabilities. PHP versions 5.2.13 and below and 5.3.2 and below are affected.
9867aef6cb0e23eb7e1c90501a688b87Software from HostFriendz.com suffers from a remote SQL injection vulnerability.
22701d2983b7b0292ed0b1507faaa196Month Of PHP Security - PHP’s iconv_substr() function can be abused for information leak attacks, because of the call time pass by reference feature. PHP versions 5.2.13 and below and 5.3.2 and below are affected.
1a1045191cfaa946584ed44708cbb48cLizzard Active Media suffers from multiple remote SQL injection vulnerabilities.
fa4faebda9d855d35a1fbbf27ad0c103Month Of PHP Security - PHP’s iconv_mime_decode() function can be abused for information leak attacks, because of the call time pass by reference feature. PHP versions 5.2.13 and below and 5.3.2 and below are affected.
8f24b17078f4235b786eab6a5ba37659Month Of PHP Security - An SQL Injection vulnerability was discovered in the user settings dialog of e107 that allows any user to become an admin easily. Versions 0.7.20 and below are affected.
80e955f1e398e050dc783afd88d7e583The Scientific Atlanta DPC2100 Cable Modem suffers from cross site request forgery and insufficient authentication vulnerabilities.
bc54b454b787a236cb2a8e47e43a8a32Month Of PHP Security - A local file inclusion vulnerability was discovered in CMSQlite that might allow remote PHP code execution. Versions 1.2 and below are affected.
2a2002bbe18931001acb66cd137d308cMonth Of PHP Security - An SQL Injection vulnerability was discovered in CMSQlite that allows to retrieve all data from the database. Versions 1.2 and below are affected.
755198535b782ed8d177a7e4be7a107aMonth Of PHP Security - The new phar extension in PHP 5.3 contains several format string vulnerabilities in the internal phar_wrapper_open_url() function. PHP versions 5.3 through 5.3.2 are affected.
acdaf9ccac055cc91b5f298f13f30ec9Month Of PHP Security - The new phar extension in PHP 5.3 contains several format string vulnerabilities in the internal phar_parse_url() function. PHP versions 5.3 through 5.3.2 are affected.
f462a1cdc1c6472c8d3b233582b1f2ecBlox CMS suffers from a remote SQL injection vulnerability.
69f953dde24a7837751377c3d18a9efdAlsco CMS suffers from a remote SQL injection vulnerability.
2106155de1617e3163098046d6df1486Interuse Website Builder and Design suffers from a remote SQL injection vulnerability.
565a3df6a302704d545a962e19a4cecdMonth Of PHP Security - The new phar extension in PHP 5.3 contains a format string vulnerability in the internal phar_wrapper_unlink() function. PHP versions 5.3 through 5.3.2 are affected.
19cb5a4deeb4170dcda854149e84b8d2Month Of PHP Security - The new phar extension in PHP 5.3 contains a format string vulnerability in the internal phar_wrapper_open_dir() function. PHP versions 5.3 through 5.3.2 are affected.
d0ac40b5cd3d8f7524dbc123581a6c67Apache Axis2 version 1.4.1 suffers from a local file inclusion vulnerability.
2d12676574f4255c3308efae3e8cdb97ProWeb Design suffers from a remote SQL injection vulnerability.
8c459ad810d8545aa52a8f0fb7599b8cFjallfoss.fcc.gov suffers from a cross site scripting vulnerability.
e6a6b7b9302456ff7632ab268e46dd77PHP Graphy versions 0.9.7 and below suffer from a remote command execution vulnerability.
14feb257012772fa66c4d52047b8eb95Webasyst Shop-Script remote blind SQL injection exploit.
6685ed4a2505a9ca7ef15fff57013195TeleData CMS version 0.9 suffers from a local file inclusion vulnerability.
45f0a183cdb1e162392952a8986f0a80Remote SQL injection exploit for the Joomla QPersonel component.
56fd3e4f4f47fc073d1e98de4e9ff4ceSchaf CMS version 1.0 suffers from a remote SQL injection vulnerability.
7ba2102dc306eabb4ba13787b06dee18
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed