DGBook index.php Multiple Variable XSS

Network Security News – Thursday, May 25, 2006 Events

DGBook index.php Multiple Variable XSS

DGBook contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "name", "homepage", "email", and "address" variables upon submission to the index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/25732

Hiox Guestbook index.php Multiple Field XSS

Hiox Guestbook contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the Email and Comments fields upon submission to the index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/25712

Invision Power Board moderate.php Arbitrary Code Execution

Invision Power Board contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not properly validate the 'df' variable in a "preg_replace()" call in the action_public/moderate.php script. This could allow a user to inject and execute arbitrary PHP code via the "e" pattern modifier, leading to a loss of integrity.. Read more at osvdb.org/25667

Invision Power Board class_post.php Arbitrary Code Execution

Invision Power Board contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not properly validate the 'post_icon' variable in a "preg_replace()" call in the classes/post/class_post.php script. This could allow a user to inject and execute arbitrary PHP code via the "e" pattern modifier, leading to a loss of integrity.. Read more at osvdb.org/25668

DGBook index.php Multiple Variable SQL Injection

DGBook contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the inde.php script not properly sanitizing user-supplied input to the "name", "email", "homepage", "address", "comment", and "ip" variables. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/25733

Alkacon OpenCms search.html query Variable XSS

OpenCMS contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'query' variable upon submission to the search.html script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/25710

Linux Kernel SCTP HB-ACK Chunk Processing Overflow DoS

The Linux kernel contains a flaw that may allow a remote denial of service. The issue is triggered when a crafted HB-ACK chunk packet is sent to the SCTP handling code, which can be found in the '/net/sctp/sm_statefuns.c' file. The kernel then fails to properly validate the length of certain parameters, which might result in access to invalid memory and lead to loss of availability for the platform due to a kernel crash.. Read more at osvdb.org/25695

Linux Kernel SCTP Chunk Length Calculation Parameter Processing Overflow DoS

The Linux kernel contains a flaw that may allow a remote denial of service. The issue is triggered because of a flaw in the bounds checking process of chunk lengths and parameter lengths defined in 'include/net/sctp/sctp.h'. This might lead to attempted access of invalid memory and might result in a kernel crash and hence loss of availability for the platform.. Read more at osvdb.org/25696

Albinator Pro gc.php dirpath Variable Remote File Inclusion

Albinator Pro contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to gc.php not properly sanitizing user input supplied to the "dirpath" variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/25665

Xtreme Topsites join.php SQL Injection

Topsites contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'join.php' script not properly sanitizing user-supplied input to unspecified variables. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/25705

Vuln: Stefan Frings SMS Server Tools Local Format String Vulnerability

Stefan Frings SMS Server Tools Local Format String Vulnerability. Read more at securityfocus.com/bid/16188

Vuln: Nucleus CMS GLOBALS[DIR_LIBS] Parameter Remote File Include Vulnerability

Nucleus CMS GLOBALS[DIR_LIBS] Parameter Remote File Include Vulnerability. Read more at securityfocus.com/bid/18097

Vuln: HP-UX Software Distributor Unspecified Local Privilege Escalation Vulnerability

HP-UX Software Distributor Unspecified Local Privilege Escalation Vulnerability

. Read more at securityfocus.com/bid/18098