EUVD-2008-6148

Malware in sbrugna...

CVE-2008-6178

Unrestricted file upload vulnerability in editor/filemanager/browser/default/connectors/php/connector.php in FCKeditor 2.2, as used in Falt4 CMS, Nuke ET, and other products, allows remote attackers to execute arbitrary code by creating a file with PHP sequences preceded by a ZIP header, uploadin...

CVE-2008-6178

The CVE-2008-6178 issue is a vulnerability in FCKeditor 2.2’s editor/filemanager/browser/default/connectors/php/connector.php where FileUpload accepts a file with PHP content masquerading as an image (via a ZIP header) and stores it under UserFiles/File/, enabling remote code execution. Affected ...

NSAG-196-23.02.2006.txt

Advisory: NSAG-¹196-23.02.2006 Research: NSA Group Russian company on Audit of safety & Network security Site of Research: http://www.nsag.ru or http://www.nsag.org Product: FCKeditor 2.2 Site of manufacturer: http://www.fckeditor.net The status: 19/11/2005 - Publication is postponed. 19/11/2005 ...

NSA Group Security Advisory NSAG-№196-23.02.2006 Vulnerability FCKeditor 2.2

Advisory: NSAG-№196-23.02.2006 Research: NSA Group Russian company on Audit of safety & Network security Site of Research: http://www.nsag.ru or http://www.nsag.org Product: FCKeditor 2.2 Site of manufacturer: http://www.fckeditor.net The status: 19/11/2005 - Publication is postponed. 19/11/2005 ...