[CLOSE] OSVDB ID : 47200 - Disclosed: 2008-07-14

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in BilboBlog 0.2.1 allow remote authenticated administrators to inject arbitrary web script or HTML via the (1) content parameter to admin/update.php, related to conflicting code in widget.php; and allow remote attackers to inject arbitrary web script or HTML via the (2) titleId parameter to head.php, reachable through index.php; the (3) t_lang[lang_copyright] parameter to footer.php; the (4) content parameter to the default URI under admin/; the (5) url, (6) t_lang[lang_admin_help], (7) t_lang[lang_admin_clear_cache], (8) t_lang[lang_admin_home], and (9) t_lang[lang_admin_logout] parameters to admin/homelink.php; and the (10) t_lang[lang_admin_new_post] parameter to admin/post.php. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 47201 - Disclosed: 2008-07-14

Description:

BilboBlog contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'admin/delete.php' script not properly sanitizing user-supplied input to the 'num' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 47204 - Disclosed: 2008-07-14

Description:

(Description Provided by CVE) : admin/login.php in BilboBlog 0.2.1, when register_globals is enabled, allows remote attackers to bypass authentication and obtain administrative access via a direct request that sets the login, admin_login, password, and admin_passwd parameters.

[CLOSE] OSVDB ID : 48288 - Disclosed: 2008-07-14

Description:

(Description Provided by CVE) : BilboBlog 0.2.1 allows remote attackers to obtain sensitive information via (1) an enable_cache=false query string to footer.php or (2) a direct request to pagination.php, which reveals the installation path in an error message.

[CLOSE] OSVDB ID : 48289 - Disclosed: 2008-07-14

Description:

(Description Provided by CVE) : BilboBlog 0.2.1 allows remote attackers to obtain sensitive information via (1) an enable_cache=false query string to footer.php or (2) a direct request to pagination.php, which reveals the installation path in an error message.

[CLOSE] OSVDB ID : 51472 - Disclosed: 2008-07-14

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 52614 - Disclosed: 2008-07-14

Description:

(Description Provided by CVE) : Insecure method vulnerability in Sina Inc. DLoader Class ActiveX Control allows remote attackers to overwrite arbitrary files via a URL in the first parameter to the DonwloadAndInstall method. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 68690 - Disclosed: 2008-07-14

Description:

(Description Provided by CVE) : ftpserver.py in pyftpdlib before 0.5.0 does not delay its response after receiving an invalid login attempt, which makes it easier for remote attackers to obtain access via a brute-force attack.

[CLOSE] OSVDB ID : 47231 - Disclosed: 2008-07-13

Description:

(Description Provided by CVE) : The LDT implementation in the Linux kernel 2.6.25.x before 2.6.25.11 on x86_64 platforms uses an incorrect size for ldt_desc, which allows local users to cause a denial of service (system crash) or possibly gain privileges via unspecified vectors.

[CLOSE] OSVDB ID : 47012 - Disclosed: 2008-07-13

Description:

Pluck contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to the data/inc/themes/predefined_variables.php script not properly sanitizing user input, specifically directory traversal style attacks (../../) supplied to the 'langpref', 'file', 'blogpost', and 'cat' variables. This may allow an attacker to include a file from the targeted host that contains arbitrary commands which will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system.

[CLOSE] OSVDB ID : 47013 - Disclosed: 2008-07-13

Description:

ITechBids contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'sellers_othersitem.php' script not properly sanitizing user-supplied input to the 'seller_id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 47014 - Disclosed: 2008-07-13

Description:

ITechBids contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'classifieds.php' script not properly sanitizing user-supplied input to the 'productid' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 47015 - Disclosed: 2008-07-13

Description:

ITechBids contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'shop.php' script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 47016 - Disclosed: 2008-07-13

Description:

ITechBids contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate "productid" variables upon submission to the forward_to_friend.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 47065 - Disclosed: 2008-07-13

Description:

Scripteen Free Image Hosting Script contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the admin/login.php script not properly sanitizing user-supplied input to the 'username' and 'password' parameters. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 47029 - Disclosed: 2008-07-13

Description:

(Description Provided by CVE) : admin/index.php in Maian Search 1.1 and earlier allows remote attackers to bypass authentication and gain administrative access by sending an arbitrary search_cookie cookie.

[CLOSE] OSVDB ID : 47030 - Disclosed: 2008-07-13

Description:

(Description Provided by CVE) : admin/index.php in Maian Guestbook 3.2 and earlier allows remote attackers to bypass authentication and gain administrative access by sending an arbitrary gbook_cookie cookie.

[CLOSE] OSVDB ID : 47031 - Disclosed: 2008-07-13

Description:

(Description Provided by CVE) : admin/index.php in Maian Recipe 1.2 and earlier allows remote attackers to bypass authentication and gain administrative access by sending an arbitrary recipe_cookie cookie.

[CLOSE] OSVDB ID : 47032 - Disclosed: 2008-07-13

Description:

(Description Provided by CVE) : admin/index.php in Maian Links 3.1 and earlier allows remote attackers to bypass authentication and gain administrative access by sending an arbitrary links_cookie cookie.

[CLOSE] OSVDB ID : 47033 - Disclosed: 2008-07-13

Description:

(Description Provided by CVE) : admin/index.php in Maian Uploader 4.0 and earlier allows remote attackers to bypass authentication and gain administrative access by sending an arbitrary uploader_cookie cookie.

[CLOSE] OSVDB ID : 47034 - Disclosed: 2008-07-13

Description:

(Description Provided by CVE) : admin/index.php in Maian Weblog 4.0 and earlier allows remote attackers to bypass authentication and gain administrative access by sending an arbitrary weblog_cookie cookie.

[CLOSE] OSVDB ID : 47066 - Disclosed: 2008-07-13

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in Scripteen Free Image Hosting Script 1.2.1 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameter to admin/login.php, or the (3) uname or (4) pass parameter to login.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

[CLOSE] OSVDB ID : 47067 - Disclosed: 2008-07-13

Description:

(Description Provided by CVE) : Scripteen Free Image Hosting Script 1.2 and 1.2.1 allows remote attackers to bypass authentication and gain administrative access by setting the cookid cookie value to 1.

[CLOSE] OSVDB ID : 47155 - Disclosed: 2008-07-13

Description:

(Description Provided by CVE) : Simple DNS Plus 4.1, 5.0, and possibly other versions before 5.1.101 allows remote attackers to cause a denial of service via multiple DNS reply packets.

[CLOSE] OSVDB ID : 47158 - Disclosed: 2008-07-13

Description:

(Description Provided by CVE) : xine-lib before 1.1.15 allows remote attackers to cause a denial of service (crash) via a crafted OGG file, as demonstrated by playing lol-ffplay.ogg with xine.

[CLOSE] OSVDB ID : 47159 - Disclosed: 2008-07-13

Description:

UltraStats contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'players-detail.php' script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 47174 - Disclosed: 2008-07-13

Description:

(Description Provided by CVE) : search_result.cfm in Jobbex JobSite allows remote attackers to obtain sensitive information via unspecified vectors that reveal the installation path in an error message.

[CLOSE] OSVDB ID : 47192 - Disclosed: 2008-07-13

Description:

(Description Provided by CVE) : Multiple SQL injection vulnerabilities in usercp.php in mForum 0.1a, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) City, (2) Interest, (3) Email, (4) Icq, (5) msn, or (6) Yahoo Messenger field in an edit_profile action.

[CLOSE] OSVDB ID : 47275 - Disclosed: 2008-07-12

Description:

(Description Provided by CVE) : Apple Safari allows web sites to set cookies for country-specific top-level domains, such as co.uk and com.au, which could allow remote attackers to perform a session fixation attack and hijack a user's HTTP session, aka "Cross-Site Cooking," a related issue to CVE-2004-0746, CVE-2004-0866, and CVE-2004-0867.

[CLOSE] OSVDB ID : 47011 - Disclosed: 2008-07-12

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 47019 - Disclosed: 2008-07-12

Description:

Maian Music contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered due to improper access restriction in the admin/index.php script. This can be exploited to bypass the authentication mechanism and gain access to the administration section by setting the "mmusic_cookie" cookie. This flaw may lead to a loss of integrity.

[CLOSE] OSVDB ID : 47023 - Disclosed: 2008-07-12

Description:

jSite contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'page' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 47020 - Disclosed: 2008-07-12

Description:

webCMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'secciones/tablon/tablon.php' script not properly sanitizing user-supplied input to the 'id' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 47024 - Disclosed: 2008-07-12

Description:

(Description Provided by CVE) : Directory traversal vulnerability in index.php in jSite 1.0 OE allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the module parameter.

[CLOSE] OSVDB ID : 47025 - Disclosed: 2008-07-12

Description:

jSite contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'admin/login.php' script not properly sanitizing user-supplied input to the 'username' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 47055 - Disclosed: 2008-07-12

Description:

(Description Provided by CVE) : Stack-based buffer overflow in op before Changeset 563, when xauth support is enabled, allows local users to gain privileges via a long XAUTHORITY environment variable.

[CLOSE] OSVDB ID : 47154 - Disclosed: 2008-07-12

Description:

Avlc Forum contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'vlc_forum.php' script not properly sanitizing user-supplied input to the 'id' variable. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 47937 - Disclosed: 2008-07-12

Description:

(Description Provided by CVE) : The ffmpeg lavf demuxer allows user-assisted attackers to cause a denial of service (application crash) via a crafted GIF file, possibly related to gstreamer, as demonstrated by lol-giftopnm.gif.

[CLOSE] OSVDB ID : 48816 - Disclosed: 2008-07-12

Description:

(Description Provided by CVE) : Apple Safari sends Referer headers containing https URLs to different https web sites, which allows remote attackers to obtain potentially sensitive information by reading Referer log data.

[CLOSE] OSVDB ID : 57442 - Disclosed: 2008-07-12

Description:

(Description Provided by CVE) : Maian Greetings 2.1 allows remote attackers to bypass authentication and gain administrative privileges by setting the mecard_admin_cookie cookie to admin.