Archive

Archive for April, 2013

MediaWiki Two XML External Entities Vulnerabilities

April 26th, 2013
Comments Off

Application: MediaWiki
Affected Version: versions prior to 1.20.4 and 1.19.5.
Vendor’s URL: MediaWiki
Bug Type: System Access
Risk Level: Critical

Solution:
Update to version 1.20.4 or 1.19.5.

Access Bypass, Content Management

WordPress Formidable Pro Plugin Unspecified Vulnerabilities

April 26th, 2013
Comments Off

Application: WordPress
Affected Version: versions prior to 1.06.09.
Vendor’s URL: Formidable Pro Plugin
Bug Type: -
Risk Level: Critical

Solution:
Update to version 1.06.09.

Content Management

phpVMS PopUpNews Module SQL Injection

April 26th, 2013
Comments Off

Application: phpVMS
Affected Version: version 2.0 and other versions.
Vendor’s URL: PopUpNews Module
Bug Type: SQL Injection
Risk Level: Critical

Solution:
No official solution is currently available.

Content Management, SQL Injection