Archive

Archive for November, 2008

vBulletin Visitor Messages Script Insertion

November 24th, 2008
Comments Off

Application: vBulletin
Affected Version: prior to version 3.7.4 PL1.
Vendor’s URL: vBulletin Visitor Messages
Bug Type: Cross Site Scripting
Risk Level: Critical

Solution:
Update to version 3.7.4 PL1.
http://members.vbulletin.com/patches.php

Cross Site Scripting, Discussion Boards

vBulletin Calender SQLi

November 24th, 2008
Comments Off

Application: vBulletin
Affected Version: version 3.7.3.pl1 and other versions.
Vendor’s URL: vBulletin Calender
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Update to version 3.7.4 or 3.6.12.

Discussion Boards, SQL Injection

vBulletin SQLi

November 24th, 2008
Comments Off

Application: vBulletin
Affected Version: version 3.7.4 and other versions.
Vendor’s URL: vBulletin
Bug Type: SQL Injection
Risk Level: Low

Solution:
Grant only trusted users administrative access to the affected sections.
Reportedly, the vulnerabilities will be fixed in an upcoming version 3.7.5.

Discussion Boards, SQL Injection

phpBB Small ShoutBox Module “id” SQLi

November 24th, 2008
Comments Off

Application: phpBB
Affected Version: version 1.4 and other versions.
Vendor’s URL: Small ShoutBox Module
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitised.

Discussion Boards, SQL Injection

Joomla! Script Insertion Vulnerabilities

November 24th, 2008
Comments Off

Application: Joomla
Affected Version: version 1.5.7 and prior.
Vendor’s URL: Joomla
Bug Type: Cross Site Scripting
Risk Level: Critical

Solution:
Update to version 1.5.8.

Content Management, Cross Site Scripting

Simple Machines Forum Multiple Vulnerabilities

November 24th, 2008
Comments Off

Application: Simple Machines Forum
Affected Version: version 1.1.6 and other versions.
Vendor’s URL: Simple Machines Forum
Bug Type: Cross Site Scripting
Risk Level: Critical

Solution:
Update to version 1.0.15 or 1.1.7.

Cross Site Scripting, Discussion Boards, Information Disclosure

Joomla Pro Desk Component “include_file” Local File Inclusion

November 24th, 2008
Comments Off

Application: Joomla
Affected Version: versions 1.0 and 1.2, and other versions.
Vendor’s URL: Pro Desk Component
Bug Type: File Inclusion
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly verified.

Content Management, File Inclusion

Joomla VirtueMart Google Base Component File Inclusion

November 24th, 2008
Comments Off

Application: Joomla
Affected Version: version 1.3 and other versions.
Vendor’s URL: VirtueMart Google Base
Bug Type: File Inclusion
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly verified.

Content Management, File Inclusion

Drupal Content Construction Kit Script Insertion

November 24th, 2008
Comments Off

Application: Drupal
Affected Version:
* CCK for Drupal 5.x prior to 5.x-1.10
* CCK for Drupal 6.x prior to 6.x-2.0
Vendor’s URL: Content Construction Kit
Bug Type: Cross Site Scripting
Risk Level: Medium

Solution:
Drupal 5.x:
Update to CCK version 5.x-1.10.
http://drupal.org/node/330570

Drupal 6.x:
Update to CCK version 6.x-2.0.
http://drupal.org/node/330573

Content Management, Cross Site Scripting

Joomla Dada Mail Manager Component File Inclusion

November 24th, 2008
Comments Off

Application: Joomla
Affected Version: versions 2.6 and other versions.
Vendor’s URL: Dada Mail Manager
Bug Type: File Inclusion
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly verified.

Content Management, File Inclusion

PHP-Nuke BookCatalog Module “catid” SQLi

November 24th, 2008
Comments Off

Application: PHP-Nuke
Affected Version: -
Vendor’s URL: BookCatalog Module
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitised.

Content Management, Information Disclosure

Joomla RWCards Component “img” File Disclosure

November 24th, 2008
Comments Off

Application: Joomla
Affected Version: version 3.0.11 and other versions.
Vendor’s URL: RWCards Component
Bug Type: File Disclosure
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitised.

Content Management, Information Disclosure

Joomla KBase Component “id” SQLi

November 24th, 2008
Comments Off

Application: Joomla
Affected Version: version 1.2 and other versions.
Vendor’s URL: KBase Component
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitised.

Content Management, SQL Injection

Joomla Component Archaic Binary “gallery” Directory Traversal

November 24th, 2008
Comments Off

Application: Joomla
Affected Version: version 1.0 and other versions.
Vendor’s URL: Archaic Binary
Bug Type: Directory Traversal
Risk Level: Low

Solution:
Edit the source code to ensure that input is properly sanitised.

Content Management, Information Disclosure