Mercury CMS index.cfm page Variable SQL Injection

Network Security News – Friday, December 23, 2005 Events

Mercury CMS index.cfm page Variable SQL Injection

Mercury CMS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.cfm' script not properly sanitizing user-supplied input to the 'page' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/21862

Direct News index.php setLang Variable SQL Injection

Direct News contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'setLang' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/21854

Cofax search.htm searchstring Variable XSS

Cofax contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'searchstring' variables upon submission to the 'search.htm' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/21850

Community Enterprise index.cfm Multiple Variable SQL Injection

Community Enterprise contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.cfm' script not properly sanitizing user-supplied input to the 'ID', 'pageID', 'nodeID', 'parentid' and 'documentFormatId' variables. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/21855

ContentServ index.php StoryID variable SQL Injection

ContentServ contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'index.php' script not properly sanitizing user-supplied input to the 'StoryID' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/21851

Miraserver newsitem.php id Variable SQL Injection

Miraserver contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to newsitem.php not properly sanitizing user input supplied to the 'id' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/21837

NQcontent Search Module XSS

NQcontent contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate variables upon submission to the search module. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/21829

Pegasus Mail POP3 Trace Reply Overflow

A remote overflow exists in Pegasus Mail. Pegasus Mail fails to check the length of trace messages from POP3 servers when downloading messages, resulting in a stack overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of confidentiality, and integrity.. Read more at osvdb.org/21842

Media2 CMS Shop default.asp item Variable SQL Injection

Media2 CMS Shop contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the default.asp script not properly sanitizing user-supplied input to the 'item' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/21846

Miraserver article.php cat Variable SQL Injection

Miraserver contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the article.php script not properly sanitizing user-supplied input to the 'cat' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/21838

Vuln: Mantis Multiple Unspecified Remote Vulnerabilities

Mantis Multiple Unspecified Remote Vulnerabilities. Read more at securityfocus.com/bid/16046

Vuln: WebWasher Malicious Script Filter Bypass Vulnerability

WebWasher Malicious Script Filter Bypass Vulnerability. Read more at securityfocus.com/bid/16047

Vuln: Apple Mac OS X KHTMLParser Remote Denial of Service Vulnerability

Apple Mac OS X KHTMLParser Remote Denial of Service Vulnerability. Read more at securityfocus.com/bid/16045

Vuln: Linux Kernel ICMP_Push_Reply Remote Denial Of Service Vulnerability

Linux Kernel ICMP_Push_Reply Remote Denial Of Service Vulnerability. Read more at securityfocus.com/bid/16044

XSS&Sql injection attack in PHP-Fusion 6.00.3 Released

XSS&Sql injection attack in PHP-Fusion 6.00.3 Released. Read more at securityfocus.com/archive/1/420109

[ GLSA 200512-12 ] Mantis: Multiple vulnerabilities

[ GLSA 200512-12 ] Mantis: Multiple vulnerabilities. Read more at securityfocus.com/archive/1/420110

Webwasher CSM Appliance Script Security Restriction Bypass

Webwasher CSM Appliance Script Security Restriction Bypass. Read more at securityfocus.com/archive/1/420106

iDefense Security Advisory 12.22.05: Linux Kernel Socket Buffer Memory Exhaustion DoS Vulnerability

iDefense Security Advisory 12.22.05: Linux Kernel Socket Buffer Memory Exhaustion DoS Vulnerability. Read more at securityfocus.com/archive/1/420105