Websecurity - Веб безпека

В даній добірці уразливості в веб додатках:

• Cross-site Scripting / HTML injection on F5 FirePass 4100 SSL VPN ‘download_plugin.php3′ server-side script (деталі)
• Cross-site scripting (XSS) vulnerability in NukeSentinel (деталі)
• SQL injection vulnerability in NukeSentinel (деталі)
• XSS In Script deviantART (деталі)
• Php Nuke POST XSS on steroids (деталі)
• Weekly Drawing Contest <= (check_vote.php) Remote File Disclosure Vuln (деталі)
• MySQL Commander <= 2.7 (home) Remote File Inclusion Vulnerability (деталі)
• PHP remote file inclusion vulnerability in MySpeach (деталі)
• PHP remote file inclusion vulnerability in Sangwan Kim phpIndexPage (деталі)
• PHP-інклюдинг в Limbo CMS event (деталі)
• Обхід обмежень безпеки в AlstraSoft Web Host Directory (деталі)
• PHP remote file inclusion vulnerability in Bradabra (деталі)
• PHP remote file inclusion vulnerability in Mafia Scum Tools 2.0.0 in Matthew Wardrop Advanced Random Generators (деталі)
• SQL injection vulnerability in webSPELL 4.01.02 (деталі)
• Декілька уразливостей в Cacti (деталі)

This entry was posted on 16:27 08.03.2008 and is filed under Уразливості. You can follow any responses to this entry through the RSS 2.0 feed.