Websecurity - Веб безпека

В даній добірці уразливості в веб додатках:

• Sourcefire Defense Center - multiple vulnerabilities (деталі)
• b2ePMS 1.0 Authentication Bypass Vulnerability (деталі)
• Liferay users can assign themselves to organizations, leading to possible privilege escalation (деталі)
• Liferay 6.1 json webservices are subject to cross-site request forgery attacks (деталі)
• Liferay 6.1 can be compromised without having an account on the portal (деталі)
• McAfee Email and Web Security Appliance v5.6 - Arbitrary file download is possible with a crafted URL when logged in as any user (деталі)
• Guests can view names and emailadresses of all Liferay users in liferay 6.1 (деталі)
• Multiple xss issues in Liferay (деталі)
• Epicor Returns Management SOAP-Based Blind SQL Injection (деталі)
• ikiwiki security update (деталі)

This entry was posted on 16:25 27.06.2012 and is filed under Уразливості. You can follow any responses to this entry through the RSS 2.0 feed.