BtitTracker torrents.php Multiple Variable SQL Injection

Network Security News – Thursday, June 22, 2006 Events

BtitTracker torrents.php Multiple Variable SQL Injection

BtitTracker contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the torrents.php script not properly sanitizing user-supplied input to the 'by' and 'order' variables. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/26653

tplShop category.php first_row Variable SQL Injection

TplShop contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the category.php script not properly sanitizing user-supplied input to the 'first_row' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/26631

bitweaver articles/edit.php Arbitrary File Upload

Bitweaver contains a flaw that may allow a malicious user to execute arbitrary PHP code. The issue is triggered when a user uploads files with multiple file name extensions and executes them in the /temp/articles directory. It is possible that the flaw may allow remote code execution resulting in a loss of integrity.. Read more at osvdb.org/26587

bitweaver users/index.php sort_mode Information Disclosure

Bitweaver contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when invalid input is passed to the 'sort_mode' parameter in /users/index.php, which will disclose full installation path and SQL table informations resulting in a loss of confidentiality.. Read more at osvdb.org/26589

Adobe Reader for Windows Multiple Unspecified Issues

Adobe Reader contains a flaw related to unspecified errors. No further details have been provided.. Read more at osvdb.org/26536

Tradingeye Shop details.cfm image Variable XSS

Tradingeye Shop contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'image' variable upon submission to the details.cfm script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/26637

Cisco CallManager Web Interface ccmuser/logon.asp XSS

Cisco CallManager contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate input passed upon submission to the ccmuser/logon.asp script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/26652

Cisco CallManager Web Interface ccmadmin/phonelist.asp pattern Variable XSS

Cisco CallManager contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'pattern' variable upon submission to the ccmadmin/phonelist.asp script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/26651

bitweaver articles/index.php feedback Variable XSS

Bitweaver contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'feedback' variable upon submission to the articles/index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/26588

IRIX addnetpr Symlink Privilege Escalation

IRIX contains a flaw that may allow a malicious local user to manipulate arbitrary files on the system. The issue is due to the addnetpr program creating temporary files insecurely. It is possible for a user to use a symlink style attack to corrupt arbitrary files, resulting in a loss of integrity.. Read more at osvdb.org/8560

Vuln: Microsoft Excel Unspecified Remote Code Execution Vulnerability

Microsoft Excel Unspecified Remote Code Execution Vulnerability. Read more at securityfocus.com/bid/18422

Vuln: Microsoft HLINK.DLL Link Memory Corruption Vulnerability

Microsoft HLINK.DLL Link Memory Corruption Vulnerability. Read more at securityfocus.com/bid/18500

Vuln: DIA XFIG File Import Multiple Remote Buffer Overflow Vulnerabilities

DIA XFIG File Import Multiple Remote Buffer Overflow Vulnerabilities

. Read more at securityfocus.com/bid/17310

Vuln: Usermin Change User Details Remote Denial of Service Vulnerability

Usermin Change User Details Remote Denial of Service Vulnerability. Read more at securityfocus.com/bid/18574

Re: Bypassing of web filters by using ASCII

Re: Bypassing of web filters by using ASCII. Read more at securityfocus.com/archive/1/438010

Re: Bypassing of web filters by using ASCII

Re: Bypassing of web filters by using ASCII

. Read more at securityfocus.com/archive/1/437982

Re: possible SQL injection in Subdreamer

Re: possible SQL injection in Subdreamer. Read more at securityfocus.com/archive/1/437983

Bypassing of web filters by using ASCII

Bypassing of web filters by using ASCII. Read more at securityfocus.com/archive/1/437948