phpAddressBook Multiple Vulnerabilities

Published by TL Guan April 18th, 2008 in Cross Site Scripting, File Inclusion and Information Disclosure.

Application: phpAddressBook
Affected Version: 2.11 and other versions.
Vendor’s URL: phpAddressBook
Bug Type: Cross Site Scripting and file inclusion
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly verified and sanitized.

Search

Entries RSS

Latest

eGroupWare File Upload
Joomla Jom Comment Component Unspecified SQL Injection
WordPress WP-Download Plugin SQL Injection
AuraCMS SQL Injection
Simple Gallery XSS
Drupal Webform Module Unspecified Script Insertion
PHP Photo Gallery SQL Injection
Wikepage Information Disclosure
Drupal Menu System Security Bypass
Gallery Script Lite Information Disclosure

Exabytes Security Portal

Categories

phpAddressBook Multiple Vulnerabilities

Search

Subscribe

Latest

Archives