phpBB username Handling SQL Injection

Network Security News – Sunday, March 27, 2005 Events

phpBB username Handling SQL Injection

phpBB contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the hightlight variable in the viewtopic.php module is not verified properly and will allow an attacker to inject or manipulate SQL queries.. Read more at osvdb.org/11962

phpBB Cash_Mod admin_cash.php Arbitrary Command Execution

phpBB Cash_Mod contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to admin_cash.php not properly sanitizing user input supplied to the phpbb_root_path variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/11928

Cisco ACNS Cache Process Malformed TCP Connection DoS

Cisco ACNS contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker establishes a connection to the device with malformed TCP packets, and will result in loss of availability for the device.. Read more at osvdb.org/14120

Cisco ACNS Malformed IP Packet DoS

Cisco ACNS contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker sends a specially crafted packet(s) to the ACNS device, and will result in loss of availability for the device.. Read more at osvdb.org/14121

PHPOpenChat ENGLISH_poc.php Remote File Inclusion

PHPOpenChat contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to ENGLISH_poc.php not properly sanitizing user input supplied to the poc_root_path variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/14809

PHPOpenChat poc.php Remote File Inclusion

PHPOpenChat contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to poc.php not properly sanitizing user input supplied to the phpbb_root_path, poc_root_path, and sourcedir variables. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/14808

PHPOpenChat poc_loginform.php Remote File Inclusion

PHPOpenChat contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to poc_loginform.php not properly sanitizing user input supplied to the phpbb_root_path variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/14807

paFileDB admin.php Installation Path Disclosure

paFileDB contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when requesting the 'admin.php' script directly, which will disclose the installation path resulting in a loss of confidentiality.. Read more at osvdb.org/14977

paFileDB email.php Installation Path Disclosure

paFileDB contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when requesting the 'email.php' script directly, which will disclose the installation path resulting in a loss of confidentiality.. Read more at osvdb.org/14976

paFileDB file.php Installation Path Disclosure

paFileDB contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when requesting the 'file.php' script directly, which will disclose the installation path resulting in a loss of confidentiality.. Read more at osvdb.org/14975

MagicScripts E-Store Kit-2 PayPal Edition Remote File Include Vulnerability

MagicScripts E-Store Kit-2 PayPal Edition is a PHP script for using PayPal to accept online payments.MagicScripts E-Store Kit-2 PayPal Edition is prone to a remote file…. Read more at securityfocus.com/bid/12910?ref=rss

MagicScripts E-Store Kit-2 PayPal Edition Cross-Site Scripting Vulnerability

MagicScripts E-Store Kit-2 PayPal Edition is a PHP script for using PayPal to accept online payments.E-Store Kit-2 PayPal Edition is prone to a cross-site scripting vul…. Read more at securityfocus.com/bid/12909?ref=rss

Nuke Bookmarks Marks.php SQL Injection Vulnerability

Nuke Bookmarks is a module for PHP-Nuke that allows users to store their bookmarks on the server.Nuke Bookmarks is prone to an SQL injection vulnerability.This issue …. Read more at securityfocus.com/bid/12908?ref=rss

Nuke Bookmarks Multple Cross-Site Scripting Vulnerabilities

Nuke Bookmarks is a module for PHP-Nuke that allows users to store their bookmarks on the server.Nuke Bookmarks is prone to multiple cross-site scripting vulnerabilitie…. Read more at securityfocus.com/bid/12907?ref=rss

Nuke Bookmarks Marks.php Path Disclosure Vulnerability

Nuke Bookmarks is a module for PHP-Nuke that allows users to store their bookmarks on the server.Nuke Bookmarks is prone to a path disclosure issue when invalid data is…. Read more at securityfocus.com/bid/12906?ref=rss

Apple QuickTime PictureViewer Buffer Overflow Vulnerability

QuickTime Player is the media player distributed by Apple for QuickTime as well as other media files.Reportedly, the Quicktime PictureViewer is prone to a buffer overf…. Read more at securityfocus.com/bid/12905?ref=rss

QuickTime malformed JPEG buffer overflow

Sender: [liquid at cyberspace dot org]. Read more at securityfocus.com/archive/1/394309?ref=rss

Re: smail remote and local root holes (no, really ;-)

Sender: sean [infamous41md at hotpop dot com]. Read more at securityfocus.com/archive/1/394318?ref=rss

ZH2005-03SA — multiple vulnerabilities in NukeBookmarks .6

Sender: Gerardo Astharot Di Giacomo [astharot at zone-h dot org]. Read more at securityfocus.com/archive/1/394307?ref=rss

AS/400 LDAP user accounts disclosure

Sender: Shalom Carmel [shalom at venera dot com]. Read more at securityfocus.com/archive/1/394308?ref=rss