Websecurity - Веб безпека

В даній добірці уразливості в веб додатках:

• Re: Another SQL injection in ProFTPd with mod_mysql (probably postgres as well) (деталі)
• Re: Re: Another SQL injection in ProFTPd with mod_mysql (probably postgres as well) (деталі)
• New phpldapadmin packages fix remote file inclusion (деталі)
• New horde3 packages fix cross-site scripting (деталі)
• Directory traversal in the webadmin of Unreal Tournament 3 1.3 (деталі)
• XSS Vulnerability in Active Calendar 1.2.0 (деталі)
• OpenSSL vulnerabilities (деталі)
• XSS Vulnerability in Drupal’s Node Blocks contributed module (6.x-1.3 and 5.x-1.1) (деталі)
• Local file inclusion/execution and multiple CSRF vulnerabilities in LetoDMS (formerly MyDMS) (деталі)
• Cross Site Identification (CSID) attack. Description and demonstration. (деталі)

This entry was posted on 15:29 24.04.2010 and is filed under Уразливості. You can follow any responses to this entry through the RSS 2.0 feed.