Geeklog SEC_authenticate()函数SQL注入漏洞

BUGTRAQ ID: 34456 Geeklog是一个免费的、开放源码的Web应用程序。它可以使用户创建一个虚拟的社区，可以管理用户，张贴文章等。Geeklog采用PHP实现，以MySQL为后台数据库。 Geeklog的index.php模块中的SECauthenticate函数没有正确的验证用户所提交的PHPAUTHUSER和 REMOTEUSER变量参数，远程攻击者可以通过提交恶意查询请求执行SQL注入攻击。以下是/publichtml/webservices /atom/index.php文件中34-53行的有漏洞代码段： ... requireonce...

CVE-2006-3306

CVE-2006-3306 affects Project EROS bbsengine (lib/common.php, preparestring) with an XSS flaw. The vulnerability is in the preparestring function and could allow remote attackers to inject arbitrary web script or HTML; affected versions include before 20060501-0142-jam and possibly earlier since ...

CVE-2006-0824

Multiple unspecified vulnerabilities in lib-common.php in Geeklog 1.4.0 before 1.4.0sr1 and 1.3.11 before 1.3.11sr4 allow remote attackers to include arbitrary local files and execute arbitrary code via 1 absolute paths in unspecified parameters and 2 the language cookie, as demonstrated for code...

CVE-2006-0824

CVE-2006-0824 affects Geeklog: lib-common.php in Geeklog 1.4.0 before 1.4.0sr1 and 1.3.11 before 1.3.11sr4 allows remote attackers to include arbitrary local files and execute code via absolute paths in unspecified parameters and via the language cookie (demonstrated for code execution using erro...