Luxbum 0.5.5/stable - Authentication Bypass

/\ \ \ \ /'\ \ \ , auth bypass URL: http://www.luxbum.net/ Found by: knxone Greetings: Pirata from this famous irc server ; +=========+ | CONCEPT | +=========+ Luxbum allows authentification using dotclear username and password via MySQL, while the default auth mechanism uses a md5 hash of the...

CVE-2008-4591

Multiple cross-site scripting XSS vulnerabilities in admin/include/isadmin.inc.php in PhpWebGallery 1.3.4 allow remote attackers to inject arbitrary web script or HTML via the 1 langaccessforbiden and 2 langidenttitle parameters...