[CLOSE] OSVDB ID : 71658 - Disclosed: 2011-03-20

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 71659 - Disclosed: 2011-03-20

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 71415 - Disclosed: 2011-03-20

Description:

Doctrine contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the Doctrine/Connection/Pgsql.php script not properly sanitizing user-supplied input to the 'modifyLimitQuery()' method. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 71416 - Disclosed: 2011-03-20

Description:

Doctrine contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the Doctrine/Connection/Db2.php script not properly sanitizing user-supplied input to the 'modifyLimitQuery()' method. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 74262 - Disclosed: 2011-03-20

Description:

(Description Provided by CVE) : The configuration merger in itk.c in the Steinar H. Gunderson mpm-itk Multi-Processing Module 2.2.11-01 and 2.2.11-02 for the Apache HTTP Server does not properly handle certain configuration sections that specify NiceValue but not AssignUserID, which might allow remote attackers to gain privileges by leveraging the root uid and root gid of an mpm-itk process.

[CLOSE] OSVDB ID : 75762 - Disclosed: 2011-03-20

Description:

(Description Provided by CVE) : DoceboLMS 4.0.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by views/dummy/show.php and certain other files.

[CLOSE] OSVDB ID : 77468 - Disclosed: 2011-03-20

Description:

(Description Provided by CVE) : Multiple use-after-free vulnerabilities in libarchive 2.8.4 and 2.8.5 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted (1) TAR archive or (2) ISO9660 image.

[CLOSE] OSVDB ID : 78622 - Disclosed: 2011-03-20

Description:

Linux Kernel contains a flaw in the ROSE protocol. The issue is due to the FAC_CCITT_DEST_NSAP and FAC_CCITT_SRC_NSAP fields not properly sanitizing user-supplied input. With a specially crafted request, a remote attacker can corrupt memory to cause a denial of service or potentially execute arbitrary code.

[CLOSE] OSVDB ID : 85713 - Disclosed: 2011-03-20

Description:

SilverStripe contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the Folder::findOrMake method not properly sanitizing user-supplied input before using it in SQL queries. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 90443 - Disclosed: 2011-03-20

Description:

Libiqxmlrpc contains a flaw that may allow a remote denial of service. The issue is triggered when parsing XML tags in struct members. This may allow a remote attacker to crash the program.

[CLOSE] OSVDB ID : 71245 - Disclosed: 2011-03-19

Description:

Kleophatra CMS contains a flaw related to the 'do_avatar()' function in the modules/users/controllers/users.php script failing to properly validate uploaded file types. This may allow a remote attacker to upload arbitrary PHP files and execute arbitrary PHP code.

[CLOSE] OSVDB ID : 72533 - Disclosed: 2011-03-19

Description:

(Description Provided by CVE) : The _zip_name_locate function in zip_name_locate.c in the Zip extension in PHP before 5.3.6 does not properly handle a ZIPARCHIVE::FL_UNCHANGED argument, which might allow context-dependent attackers to cause a denial of service (NULL pointer dereference) via an empty ZIP archive that is processed with a (1) locateName or (2) statName operation.

[CLOSE] OSVDB ID : 75340 - Disclosed: 2011-03-19

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 72293 - Disclosed: 2011-03-18

Description:

Juniper IVE contains an unspecified flaw related to the credential provider. This may allow an attacker to bypass authentication.

[CLOSE] OSVDB ID : 71251 - Disclosed: 2011-03-18

Description:

Novell NetWare is prone to an overflow condition. NWFTPD.NLM fails to properly sanitize user-supplied input resulting in a stack-based buffer overflow. With a specially crafted DELE command, a remote attacker can potentially execute arbitrary code.

[CLOSE] OSVDB ID : 72287 - Disclosed: 2011-03-18

Description:

CORE Multimedia Suite is prone to an overflow condition. CORE Player fails to properly sanitize user-supplied input resulting in a stack buffer overflow. With a specially crafted m3u file, a context-dependent attacker can potentially cause arbitrary code execution.

[CLOSE] OSVDB ID : 74914 - Disclosed: 2011-03-18

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 71225 - Disclosed: 2011-03-18

Description:

ChekView contains a flaw that allows a local attacker to traverse outside of a restricted path. The issue is due to the WIFI file transfer functionality not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied via the URL. This directory traversal attack would allow the attacker to access arbitrary files, such as the iPhone address book.

[CLOSE] OSVDB ID : 74889 - Disclosed: 2011-03-18

Description:

(Description Provided by CVE) : Format string vulnerability in ECTrace.dll in the iMailGateway service in the Internet Mail Gateway in OneBridge Server and DMZ Proxy in Sybase OneBridge Mobile Data Suite 5.5 and 5.6 allows remote attackers to execute arbitrary code via format string specifiers in unspecified string fields, related to authentication logging.

[CLOSE] OSVDB ID : 71216 - Disclosed: 2011-03-18

Description:

Pennyauctionsoft contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the URL upon submission to the index.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 71217 - Disclosed: 2011-03-18

Description:

Pennyauctionsoft contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the URL upon submission to the jobs.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 71218 - Disclosed: 2011-03-18

Description:

Pennyauctionsoft contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the URL upon submission to the contact.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 71219 - Disclosed: 2011-03-18

Description:

Pennyauctionsoft contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate input passed via the URL upon submission to the forum/index.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 71220 - Disclosed: 2011-03-18

Description:

Pennyauctionsoft contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the allauctions.php script not properly sanitizing user-supplied input to the 'client-ip' HTTP header. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 71221 - Disclosed: 2011-03-18

Description:

Pennyauctionsoft contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the registration.php script not properly sanitizing user-supplied input to the 'client-ip' HTTP header. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 71222 - Disclosed: 2011-03-18

Description:

Pennyauctionsoft contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the forum/forum_detail.php script not properly sanitizing user-supplied input to the 'client-ip' HTTP header. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 71228 - Disclosed: 2011-03-18

Description:

XOOPS contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'module', 'module[]', 'memberslist_id[]', 'newname[]' and 'oldname[]' parameters upon submission to the /modules/system/admin.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 75336 - Disclosed: 2011-03-18

Description:

W-Agora contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'bn' parameter upon submission to the 'register.php' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 75337 - Disclosed: 2011-03-18

Description:

W-Agora contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'register.php' script not properly sanitizing user-supplied input to the 'bn' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.

[CLOSE] OSVDB ID : 75338 - Disclosed: 2011-03-18

Description:

W-Agora contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'site' parameter upon submission to the 'rss.php3' script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 75339 - Disclosed: 2011-03-18

Description:

W-Agora contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the 'rss.php3' script not properly sanitizing user-supplied input to the 'site' parameter. This may allow an attacker to include a file from the targeted host that contains arbitrary commands that will be executed by the vulnerable script. Such attacks are limited due to the script only calling files already on the target host. In addition, this flaw can potentially be used to disclose the contents of any file on the system accessible by the web server.

[CLOSE] OSVDB ID : 74892 - Disclosed: 2011-03-17

Description:

(Description Provided by CVE) : Multiple cross-site request forgery (CSRF) vulnerabilities in the configuration screen in wp-relatedposts.php in the WP Related Posts plugin 1.0 for WordPress allow remote attackers to hijack the authentication of administrators for requests that insert cross-site scripting (XSS) sequences via the (1) wp_relatedposts_title, (2) wp_relatedposts_num, or (3) wp_relatedposts_type parameter.

[CLOSE] OSVDB ID : 71244 - Disclosed: 2011-03-17

Description:

BookLibrary Component for Joomla! contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the index.php script not properly sanitizing user-supplied input to the 'searchtext' parameter. This may allow an attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

[CLOSE] OSVDB ID : 74891 - Disclosed: 2011-03-17

Description:

(Description Provided by CVE) : Multiple cross-site request forgery (CSRF) vulnerabilities in the configuration page in the Recaptcha (aka WP-reCAPTCHA) plugin 2.9.8.2 for WordPress allow remote attackers to hijack the authentication of administrators for requests that disable the CAPTCHA requirement or insert cross-site scripting (XSS) sequences via the (1) recaptcha_opt_pubkey, (2) recaptcha_opt_privkey, (3) re_tabindex, (4) error_blank, (5) error_incorrect, (6) mailhide_pub, (7) mailhide_priv, (8) mh_replace_link, or (9) mh_replace_title parameter.

[CLOSE] OSVDB ID : 71187 - Disclosed: 2011-03-17

Description:

Rating-Widget Plugin for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'selected_key' parameter upon submission to the wp-content/plugins/rating-widget/view/availability_options.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 71188 - Disclosed: 2011-03-17

Description:

Rating-Widget Plugin for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'vars[type]' parameter upon submission to the wp-content/plugins/rating-widget/view/rating.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 71189 - Disclosed: 2011-03-17

Description:

Rating-Widget Plugin for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'rw_form_hidden_field_name' parameter upon submission to the wp-content/plugins/rating-widget/view/save.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 71185 - Disclosed: 2011-03-17

Description:

SodaHead Polls Plugin for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the [PARAMETER | FIELD] [parameter | field] upon submission to the [SCRIPT] script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 71186 - Disclosed: 2011-03-17

Description:

SodaHead Polls Plugin for WordPress contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the [PARAMETER | FIELD] [parameter | field] upon submission to the [SCRIPT] script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 73622 - Disclosed: 2011-03-17

Description:

(Description Provided by CVE) : Integer signedness error in zip_stream.c in the Zip extension in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (CPU consumption) via a malformed archive file that triggers errors in zip_fread function calls.