SIGMA Lite & Lite + Security Vulnerabilities

CVE-2005-0302

SQL injection vulnerability in default.asp in BackOffice Lite 6.0 and 6.01 allows remote attackers to execute arbitrary SQL commands via the referer field in the HTTP...

CVE-2005-0303

Multiple cross-site scripting (XSS) vulnerabilities in (1) comersus_supportError.asp or (2) comersus_backofficelite_supportError.asp in BackOffice Lite 6.0 and 6.01 allow remote attackers to inject arbitrary web script or HTML via the error...

CVE-2005-0301

comersus_backoffice_install10.asp in BackOffice Lite 6.0 and 6.01 allows remote attackers to bypass authentication and gain privileges via a direct request to the...

CVE-2005-0216

Cross-site scripting (XSS) vulnerability in formmail.php in Woltlab Burning Board Lite 1.0.0, 1.0.1e, and possibly other versions, allows remote attackers to inject arbitrary web script and HTML via the userid...

[SA13964] Comersus Cart Multiple Vulnerabilities

TITLE: Comersus Cart Multiple Vulnerabilities SECUNIA ADVISORY ID: SA13964 VERIFY ADVISORY: http://secunia.com/advisories/13964/ CRITICAL: Moderately critical IMPACT: Security Bypass, Cross Site Scripting, Manipulation of data WHERE: >From remote SOFTWARE: Comersus Cart 6.x...

bug report comersus Back Office Lite 6.0 and 6.0.1

Software: Comersus ASP Shopping Cart Version: 6.0 Free version containing BackOffice Lite 6.0 and 6.01 Vendor: Comersus Software Description Comersus ASP shopping cart is a set of ASP scripts creating an online shoppingcart. It works on a database of your own choosing, default is msaccess,...

kazaaDoS.txt

...

ethereal -- multiple protocol dissectors vulnerabilities

An Ethreal Security Advisories reports: Issues have been discovered in the following protocol dissectors: The COPS dissector could go into an infinite loop. CVE: CAN-2005-0006 The DLSw dissector could cause an assertion. CVE: CAN-2005-0007 The DNP dissector could cause...

[Full-Disclosure] Kazaa Sig2Dat Protocol Remote Integer Overflow and Denial Of Service by creating files in arbitrary locations

Application: Kazaa Vendors: http://www.kazaa.com Versions: kazaa lite k++(probably all others too...) Platforms: Windows Bug: Sig2Dat Protocol Remote Integer Overflow and Denial Of Service by creating files in arbitrary locations Exploitation: Remote With Browser Date: 17 Jan 2005 Author: ...

PHP/ASP/CGI web applications security flaws

No description...

Security Advisory: BiTBOARD xss

Advisory Information Advisory name : BiTBOARD XSS Discovered by : drhankey / it-security23.net Vendor Name : the bitshifters sdc Vendor Homepage : http://www.bitshifters.net Software : Bitboard Vulnerability Type : ...

Woltlab Burning Book addentry.php SQL Injection

Advisory Information Advisory name : Woltlab Burning Book addentry.php SQL Injection Discovered by : drhankey / it-security23.net Vendor Name : Woltlab Vendor Homepage : http://www.woltlab.de Software : Woltlab Burning Book Lite...

Security Advisory: Woltlab Burning Board Lite formmail.php XSS

Advisory Information Advisory name : Woltlab Burning Board Lite formmail.php XSS Discovered by : drhankey / it-security23.net Vendor Name : Woltlab Vendor Homepage : http://www.woltlab.de Software : Woltlab Burning Board Lite...

woltlabXSS.txt

...

CVE-2004-2195

PHP remote file inclusion vulnerability in index.php in Zanfi CMS lite 1.1 allows remote attackers to execute arbitrary PHP code via the inc...

CVE-2004-2196

Zanfi CMS lite 1.1 allows remote attackers to obtain the full path of the web server via direct requests without required arguments to (1) adm_pages.php, (2) corr_pages.php, (3) del_block.php, (4) del_page.php, (5) footer.php, (6) home.php, and...

CVE-2004-1845

Multiple cross-site scripting (XSS) vulnerabilities in News Manager Lite 2.5 allow remote attackers to inject arbitrary web script or HTML via the (1) email parameter to comment_add.asp, (2) search parameter to search.asp, or (3) n parameter to...

CVE-2004-2229

Multiple unknown vulnerabilities in Oracle 9i Lite Mobile Server 5.0.0.0.0 through 5.0.2.9.0 allow remote authenticated users to gain...

ethereal -- multiple vulnerabilities

An Ethreal Security Advisories reports: Issues have been discovered in the following protocol dissectors: Matthew Bing discovered a bug in DICOM dissection that could make Ethereal crash. An invalid RTP timestamp could make Ethereal hang and create a large temporary...

vim -- vulnerabilities in modeline handling

Ciaran McCreesh discovered news ways in which a VIM modeline can be used to trojan a text file. The patch by Bram Moolenaar reads: Problem: Unusual characters in an option value may cause unexpected behavior, especially for a modeline. (Ciaran McCreesh) Solution: Don't...

CVE-2004-0260

The AddToMailingList function in CactuSoft CactuShop 5.0 Lite contains a backdoor that allows remote attackers to delete arbitrary files via an email address that starts with...

CVE-2004-0301

Cross-site scripting (XSS) vulnerability in more.php for Online Store Kit 3.0 allows remote attackers to inject arbitrary HTML via the id...

CVE-2004-0079

The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null...

CVE-2004-0260

The AddToMailingList function in CactuSoft CactuShop 5.0 Lite contains a backdoor that allows remote attackers to delete arbitrary files via an email address that starts with...

CVE-2004-0081

OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test...

Zanfi CMS Lite index.php inc Parameter Remote File Inclusion

The remote host is running Zanfi CMS Lite, a content management system written in PHP. There is a bug in the remote version of this software that may allow an attacker to execute arbitrary commands on the remote host by using a file inclusion bug in the file 'index.php'. An attacker may execute...

Vulnerabilities in Mambo

Two Vulnerabilities in Mambo Author: Jose Antonio Coret (Joxean Koret) Date: 2004 Location: Basque Country Affected software description: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Mambo 4.5 (1.0.9) Mambo is one of the most powerful Open Source Content Management Systems on the planet. It is used all...

mambo45.jose.txt

...

Mambo Open Source 4.5.1 (1.0.9) - Function.php Arbitrary Command Execution

Mambo Open Source 4.5.1 (1.0.9) - Function.php Arbitrary Command...

Mambo Open Source 4.5.1 (1.0.9) - 'Function.php' Arbitrary Command Execution

...

CVE-2004-0820

Winamp before 5.0.4 allows remote attackers to execute arbitrary script in the Local computer zone via script in HTML files that are referenced from XML files contained in a .wsz skin...

FreeBSD : multiple vulnerabilities in ethereal (42)

The following package needs to be updated:...

FreeBSD : multiple vulnerabilities in ethereal (41)

The following package needs to be updated:...

multiple vulnerabilities in ethereal

Issues have been discovered in multiple protocol...

multiple vulnerabilities in ethereal

Issues have been discovered in multiple protocol...

CGI bugs

No description...

Vulnerabilities in News Manager Lite 2.5 & News Manager Lite administration

Title: Vulnerabilities in News Manager Lite 2.5 & News Manager Lite administration. Software: News Manager Lite 2.5 & News Manager Lite administration. Vendor: http://www.expinion.net/software/app_newsmanager.asp Impact: Disclosure of authentication information, Disclosure of user...

newsmanlite25.txt

...

CVE-2004-1847

News Manager Lite 2.5 allows remote attackers to bypass authentication and gain administrator privileges by setting the ADMIN parameter in the NEWS_LOGIN...

CVE-2004-1846

Multiple SQL injection vulnerabilities in News Manager Lite 2.5 allow remote attackers to execute arbitrary SQL code via the (1) ID parameter to more.asp, (2) ID parameter to category_news.asp, or (3) filter parameter to...

Expinion.net News Manager Lite 2.5 - search.asp Cross-Site Scripting

Expinion.net News Manager Lite 2.5 - search.asp Cross-Site...

Expinion.net News Manager Lite 2.5 - 'news_sort.asp?filter' SQL Injection

...

Expinion.net News Manager Lite 2.5 - category_news.asp?ID SQL Injection

Expinion.net News Manager Lite 2.5 - category_news.asp?ID SQL...

Expinion.net News Manager Lite 2.5 - 'category_news.asp?ID' SQL Injection

...

Expinion.net News Manager Lite 2.5 - NEWS_LOGIN?admin Cookie Authentication Bypass

Expinion.net News Manager Lite 2.5 - NEWS_LOGIN?admin Cookie Authentication...

Expinion.net News Manager Lite 2.5 - 'category_news_headline.asp' Cross-Site Scripting

...

Expinion.net News Manager Lite 2.5 - category_news_headline.asp Cross-Site Scripting

Expinion.net News Manager Lite 2.5 - category_news_headline.asp Cross-Site...

Expinion.net News Manager Lite 2.5 - news_sort.asp?filter SQL Injection

Expinion.net News Manager Lite 2.5 - news_sort.asp?filter SQL...

Expinion.net News Manager Lite 2.5 - 'more.asp?ID' SQL Injection

...

Expinion.net News Manager Lite 2.5 - 'comment_add.asp' Cross-Site Scripting

...