phpBannerExchange resetpw.php email Variable SQL Injection

Network Security News – Tuesday, June 20, 2006 Events

phpBannerExchange resetpw.php email Variable SQL Injection

PhpBannerExchange contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the resetpw.php script not properly sanitizing user-supplied input to the 'email' parameter. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/26509

LabWiki search.php query Variable XSS

LabWiki contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'query' variable upon submission to the search.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/26597

PHP zend_hash_del() Variable Unsetting Unspecified Issue

PHP contains a flaw related to the zend_hash_del() variable that may allow an attacker to compromise a vulnerable system. No further details have been provided.. Read more at osvdb.org/26466

webprojectdb nav.php INCDIR Variable Remote File Inclusion

Webprojectdb contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to nav.php not properly sanitizing user input supplied to the 'INCDIR' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/26339

WikkaWiki wikka.php Method() Function Arbitrary Page Access

WikkaWiki contains a flaw that allows a remote arbitrary page access. This flaw exists because the application does not use correctly the strstr() function within the Method() function upon submission to the wikka.php script. This could allow a user to create a specially crafted URL that would allow arbitrary page access leading to a loss of integrity.. Read more at osvdb.org/26543

WikkaWiki Session Credential Disclosure

WikkaWiki contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a specific command is typed, which will disclose credentials information resulting in a loss of confidentiality.. Read more at osvdb.org/26544

webprojectdb lang.php INCDIR Variable Remote File Inclusion

Webprojectdb contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to lang.php not properly sanitizing user input supplied to the 'INCDIR' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.. Read more at osvdb.org/26340

Virtual War war.php Multiple Variable SQL Injection

Virtual War contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the war.php script not properly sanitizing user-supplied input to the 's', 'showgame', 'sortorder', and 'sortby' parameters. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/26533

IRIX pfdisplay.cgi Arbitrary File Access

IRIX contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a malicious attacker uses the IRIS Performer API Search Tool (pfdisplay) to access files, which will disclose any files that can be accessed by the user nobody, resulting in a loss of confidentiality.. Read more at osvdb.org/134

EZGallery common/upload.asp Multiple Variable XSS

EZGallery contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'aid', 'aname', 'uid', 'm', 'gp', 'g', 'fn' and 'msg' variables upon submission to the common/upload.asp script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/26372

Vuln: NetPBM Pamtofits Remote Off-By-One Buffer Overflow Vulnerability

NetPBM Pamtofits Remote Off-By-One Buffer Overflow Vulnerability. Read more at securityfocus.com/bid/18525

Vuln: Cisco CallManager Cross-Site Scripting Vulnerability

Cisco CallManager Cross-Site Scripting Vulnerability. Read more at securityfocus.com/bid/18504

Vuln: Datecomm Multiple Cross-Site Scripting Vulnerabilities

Datecomm Multiple Cross-Site Scripting Vulnerabilities

. Read more at securityfocus.com/bid/18502

Vuln: Nullsoft Winamp Malformed MIDI File Remote Buffer Overflow Vulnerability

Nullsoft Winamp Malformed MIDI File Remote Buffer Overflow Vulnerability. Read more at securityfocus.com/bid/18507

Input Validation/Output Encoding Vulnerabilities in Cisco CallManager Allow Script Injection Attacks

Input Validation/Output Encoding Vulnerabilities in Cisco CallManager Allow Script Injection Attacks. Read more at securityfocus.com/archive/1/437757

Re: PHP security (or the lack thereof)

Re: PHP security (or the lack thereof)

. Read more at securityfocus.com/archive/1/437654

Re: PHP Live Helper <=([abs_path]) Remote File Include Vulnerabilities

Re: PHP Live Helper <=([abs_path]) Remote File Include Vulnerabilities. Read more at securityfocus.com/archive/1/437741

[ GLSA 200606-21 ] Mozilla Thunderbird: Multiple vulnerabilities

[ GLSA 200606-21 ] Mozilla Thunderbird: Multiple vulnerabilities. Read more at securityfocus.com/archive/1/437663