[Hat-Squad] i-Gallery directory traversal

Hat-Squad Advisory: i-Gallery directory traversal Product: i-Gallery Vendor Url: http://www.b-cp.com Version: 3.3 older versions not tested , but assumed vulnerable Vulnerability: Directory traversal and CSS bug Release Date: Vendor Status: Informed: 15 June 2005 Second Contact: 19 June 2005...

SECURITY.NNOV: ikonboard 3.1.1 CSS

Dear bugtraq@, Ikonboard CSS bug via IMG tag was reported long time ago for 3.0.x. The only change in Ikonboard 3.1.1 at least on sending private messages is it checks URL extension to be .gif or .jpg, so IMGjavascript:alertdocument.cookie.gif/IMG still works perfectly.... Sorry if it was already...