Various Applications Include ZeroClipboard XSS

Hello list! These are Cross-Site Scripting vulnerabilities in YAML, MultiProject extension for Trac, UserCollections extension for Piwigo, TAO and TableTools plugin for DataTables plugin for jQuery with ZeroClipboard.swf. Earlier I've wrote about Cross-Site Scripting vulnerabilities in...

WordPress Chocolate Theme XSS / Denial Of Service / Shell Upload

Hello list! I want to warn you about multiple vulnerabilities in Chocolate WP theme for WordPress. This is commercial theme for WP. These are Cross-Site Scripting, Full path disclosure, Abuse of Functionality, Denial of Service and Arbitrary File Upload vulnerabilities. In 2011 I wrote about...

WordPress Daily Edition Mouss XSS / Disclosure / Shell Upload

Hello list! I want to warn you about multiple vulnerabilities in Daily Edition Mouss theme for WordPress. In 2011 when I wrote about Cross-Site Scripting WASC-08, Full path disclosure WASC-13, Abuse of Functionality WASC-42 and Denial of Service WASC-10 vulnerabilities in TimThumb and multiple...

phpweb finished website to the latest version(inject, upload, write the shell)-vulnerability warning-the black bar safety net

Injection: The reason chicken is the exploit installing the file to re-generate the configuration file write executable code Chicken 1: the destructive action of a very large re-write the configuration file the database connection file Tasteless 2: There is some Safety common sense of the...

Persistent XSS vulnerability in WP-UserOnline

Hello 3APA3A! in 2010 I've disclosed multiple vulnerabilities Cross-Site Scripting and Full path disclosure in WordPress plugin WP-UserOnline http://securityvulns.ru/Ydocument162.html, http://seclists.org/fulldisclosure/2010/Jul/8. And recently I've disclosed the exploit for persistent XSS...

BF, CSRF, AoF and IAA vulnerabilities in MODx Revolution

Hello 3APA3A! I want to warn you about multiple vulnerabilities in MODx Revolution. These are Brute Force, Cross-Site Request Forgery, Abuse of Functionality and Insufficient Anti-automation vulnerabilities in MODx. It's about 2.x Revolution versions of MODx. In 0.x and 1.x Evolution versions of...

XSS and CS vulnerabilities in BuddyPress for WordPress

Hello 3APA3A! I want to warn you about multiple security vulnerabilities in plugin BuddyPress for WordPress. I've disclosed vulnerabilities in JW Player in June and August including in commercial version JW Player Pro and disclosed vulnerabilities in Rokbox in December. And BuddyPress uses this...

WordPress BuddyPress Cross Site Scripting / Content Spoofing

Hello list! I want to warn you about multiple security vulnerabilities in plugin BuddyPress for WordPress. I've disclosed vulnerabilities in JW Player in June and August including in commercial version JW Player Pro and disclosed vulnerabilities in Rokbox in December. And BuddyPress uses this...

TinyBrowser Upload Shell Vulnerability

Hello guys! I'll draw your attention to one exploit at 1337day.com and other their domains: http://1337day.com/exploit/19732. I've wrote to 1337day.com about it already at 19.11.2012. So it should concern every list, which posted that exploit from 1337day.com. This is AFU vulnerability in...

XSS vulnerability in swfupload in ExpressionEngine

Hello 3APA3A! Here is information about Cross-Site Scripting vulnerability in swfupload in ExpressionEngine. After publication of my advisory XSS vulnerability in web applications with swfupload: AionWeb, Magento, Liferay Portal, SurgeMail, symfony http://securityvulns.ru/docs28761.html and after...

Microsoft Internet Explorer 7

Hello 3APA3A! I want to warn you about Denial of Service vulnerabilities in Internet Explorer. I've found these DoS holes in IE7 already in August 2010. ------------------------- Affected products: ------------------------- Vulnerable are Internet Explorer 7 7.00.5730.13 and other versions of IE7...

Microsoft Internet Explorer 7 Denial Of Service

Microsoft Internet Explorer version 7.00.5730.13 suffers from a redirector denial of service vulnerability. Hello list! I want to warn you about Denial of Service vulnerabilities in Internet Explorer. I've found these DoS holes in IE7 already in August 2010. ------------------------- Affected...

Libsyn Cross Site Scripting

Hello list! As you can see from my publications for last five years, I like holes which are placed at hundreds or millions of web sites. Since my 2008's article XSS vulnerabilities in 215000 flash files http://lists.webappsec.org/pipermail/websecuritylists.webappsec.org/2008-November/004655.html...

XSS vulnerability in swfupload in WordPress

Hello 3APA3A! I will draw your attention to XSS vulnerability in swfupload in WordPress. In April there was announced Cross-Site Scripting vulnerability in swfupload.swf in WordPress CVE-2012-3414. It was fixed in WordPress 3.3.2. At that time there was no detailed information about it. Last week...

XSS and IAA vulnerabilities in Wordfence Security for WordPress

Hello 3APA3A! I want to warn you about Cross-Site Scripting and Insufficient Anti-automation vulnerabilities in Wordfence Security for WordPress. Wordfence - it's security plugin for WordPress. ------------------------- Affected products: ------------------------- Vulnerable are Wordfence Securit...

HTTP Response Splitting and XSS vulnerabilities in IBM Lotus Domino

Hello 3APA3A! I want to warn you about HTTP Response Splitting and Cross-Site Scripting vulnerabilities in IBM Lotus Domino. At 15th of August IBM released the advisory concerning these Cross-Site Scripting vulnerabilities. CVE ID: CVE-2012-3301. ------------------------- Affected products:...

CakePHP / Squiz CMS XXE Injection

Hello! I'll give you additional information concerning advisories CakePHP 2.x-2.2.0-RC2 XXE Injection http://securityvulns.ru/docs28331.html and Squiz CMS Multiple Vulnerabilities http://securityvulns.ru/docs28220.html. It's about XXE Injection in CakePHP and Squiz CMS. Similarly to earlier...

XSS, Redirector and FPD vulnerabilities in WordPress

Hello 3APA3A! In June I've disclosed vulnerabilities in WordPress, which I'd present for you. They take place in plugin Akismet for WordPress and it's core-plugin since version WP 2.0, so these vulnerabilities concern WordPress itself. This is the first in series of advisories concerning...

Уязвимости в LIOOSYS CMS

Здравствуйте 3APA3A! Сообщаю вам о SQL Injection и Information Leakage уязвимостях в LIOOSYS CMS. Это польская коммерческая CMS. SQL Injection WASC-19: http://site/index.php?id=-120union20select201,version,3,4,5/ Information Leakage WASC-13: http://site/files/db.log Утечка лога ошибок запросов к...

Lidosys CMS SQL Injection / Information Disclosure

Hello list! I'm presenting you the vulnerabilities in LIOOSYS CMS - Polish commercial CMS. These are SQL Injection and Information Leakage vulnerabilities. ------------------------- Affected products: ------------------------- Vulnerable are all versions of the system, except the last one, which...