PhotoPost PHP Pro showphoto.php photo Parameter SQL Injection

Network Security News – Wednesday, March 30, 2005 Events

PhotoPost PHP Pro showphoto.php photo Parameter SQL Injection

PhotoPost PHP Pro contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the 'photo' variable in the showphoto.php script is not verified properly and will allow an attacker to inject or manipulate SQL queries.. Read more at osvdb.org/15100

PhotoPost PHP Pro showmembers.php sl Parameter SQL Injection

PhotoPost PHP Pro contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the 'sl' variable in the showmembers.php script is not verified properly and will allow an attacker to inject or manipulate SQL queries.. Read more at osvdb.org/15099

PhotoPost PHP Pro slideshow.php photo Variable XSS

PhotoPost PHP Pro contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'photo' variables upon submission to the slideshow.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/15098

PhotoPost PHP Pro showmembers.php Multiple Variable XSS

PhotoPost PHP Pro contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'ppuser', 'sort' or 'si' variables upon submission to the showmembers.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/15097

PhotoPost PHP Pro showgallery.php Multiple Variable XSS

PhotoPost PHP Pro contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate multiple variables upon submission to the showgallery.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/15096

E-Xoops sections/index.php Path Disclosure

E-Xoops contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when malformed input is passed to the sections/index.php script, which will disclose the server installation path resulting in a loss of confidentiality.. Read more at osvdb.org/15072

E-Xoops sections/index.php artid Parameter SQL Injection

E-Xoops contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the 'artid' variable in the sections/index.php script is not verified properly and will allow an attacker to inject or manipulate SQL queries.. Read more at osvdb.org/15071

ACS Blog Multiple BBcode Tag XSS

ACS Blog contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the [link], [mail], and [img] BBcode tags upon submission to the comments section of ACS Blog. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.
The pages affected by the flaw are: add_comment.asp, admin_entry.asp, inc_editor_buttons_safari.asp, inc_functions.asp, inc_javascripts.js, popup_insert_element.asp, popup_preview.asp, user_footer.asp, user_functions.asp.. Read more at osvdb.org/15087

E-Xoops newbb/index.php viewcat Parameter SQL Injection

E-Xoops contains a flaw that will allow an attacker to inject arbitrary SQL code. The problem is that the 'viewcat' variable in the newbb/index.php script is not verified properly and will allow an attacker to inject or manipulate SQL queries.. Read more at osvdb.org/15070

A-FTP Anonymous FTP Server Long USER Command Overflow

A remote overflow exists in A-FTP. The A-FTP server fails to check the size of the username resulting in a buffer overflow. With a specially crafted request, an attacker can cause the FTP server to crash resulting in a loss of availability.. Read more at osvdb.org/13976

Multiple Vendor Telnet Client Env_opt_add Heap-Based Buffer Overflow Vulnerability

Multiple vendor's Telnet client applications are reported prone to a remote buffer overflow vulnerability. It is reported that the vulnerability exists in a function 'env…. Read more at securityfocus.com/bid/12919?ref=rss

Multiple Vendor Telnet Client LINEMODE Sub-Options Remote Buffer Overflow Vulnerability

A remote buffer overflow vulnerability affects Multiple vendor's Telnet client. This issue is due to a failure of the application to properly validate the length of user…. Read more at securityfocus.com/bid/12918?ref=rss

Adventia Chat Server Pro Remote HTML Injection Vulnerability

Adventia Chat Server Pro is a chat server implemented with ASP technology. It is designed to facilitate the simple integration of a chat room into an existing Web site. …. Read more at securityfocus.com/bid/12940?ref=rss

Lighthouse Development Squirrelcart SQL Injection Vulnerability

Squirrelcart is a PHP based shopping cart application.Squirrelcart is affected by an SQL injection vulnerability. This issue is due to the application failing to proper…. Read more at securityfocus.com/bid/12944?ref=rss

Horde Application Framework Parent Page Title Cross-Site Scripting Vulnerability

The Horde Application Framework is a series of web applications, implemented in PHP. Horde Application Framework is prone to a cross-site scripting vulnerability. This…. Read more at securityfocus.com/bid/12943?ref=rss

Smarty Template Engine Remote PHP Script Execution Vulnerability

Smarty is a PHP script template presentation framework designed to facilitate the rapid development of PHP Web applications. It is freely available for all platforms wit…. Read more at securityfocus.com/bid/12941?ref=rss

Code insertion in Blogger comments

Sender: Antone Roundy [antone at geckotribe dot com]. Read more at securityfocus.com/archive/1/394523?ref=rss

Re: DoS of LAN via D-Link switches

Sender: Tarmo Mamers [tarmo at pobox dot com]. Read more at securityfocus.com/archive/1/394539?ref=rss

RE: DoS of LAN via D-Link switches

Sender: David Gillett [gillettdavid at fhda dot edu]. Read more at securityfocus.com/archive/1/394516?ref=rss

directory traversal in FastStone 4in1 Browser 1.2

Sender: Donato Ferrante [fdonato at autistici dot org]. Read more at securityfocus.com/archive/1/394507?ref=rss