Application: Mambo
Affected Version: 4.6.1 or earlier
Vendor’s URL: http://www.mamboserver.com/
Bug Type: Access Bypass
Risk Level: Medium
Solution:
- Update to version 4.6.2
- http://mamboxchange.com/frs/?group_id=5
Author Archive for CS Lee
Application: All In One Control Panel
Version: 1.3.015 or earlier
Vendor’s URL: http://www.aiocp.com/
Bug Type: Cross Site Scripting
Risk Level: Medium
Solution:
- Update to version 1.3.016
- http://sourceforge.net/project/showfiles.php?group_id=159137
Wordpress Wordtube Plugin File Inclusion
Published by May 4th, 2007 in Access Bypass and File Inclusion.Application: Wordpress Wordtube Plugin
Version: 1.43 or earlier
Vendor’s URL: http://alexrabe.boelinger.com/?page_id=20
Bug Type: Access Bypass & File Inclusion
Risk Level: High
Solution:
- Update to the latest version which is 1.44
- http://wordpress.org/extend/plugins/wordtube/
Wordpress Wp-table Plugin File Inclusion
Published by May 4th, 2007 in Access Bypass and File Inclusion.Application: Wordpress Wp-table Plugin
Version: 1.43 or earlier
Vendor’s URL: http://alexrabe.boelinger.com/
Bug Type: Access Bypass & File Inclusion
Risk Level: High
Solution:
- If you are using this plugin, either disable it or update it to version 1.44
- http://wordpress.org/extend/plugins/wp-table/
MyBB SQL Injection Vulnerability
Published by April 26th, 2007 in Applications, Discussion Boards and SQL Injection.Application: MyBB
Version: 1.2.5 or earlier
Vendor’s URL: http://www.mybboard.net/
Bug Type: Sql Injection
Risk Level: High
Solution:
- Upgrade to version 1.2.6
- http://community.mybboard.net/showthread.php?tid=18632
Exponent CMS Information Disclosure
Published by April 23rd, 2007 in Access Bypass and Content Management.Application: Exponent CMS
Version: 0.96.6 alpha or earlier
Vendor’s URL: http://www.exponentcms.org/index.php?section=1
Bug Type: Access Bypass
Risk Level: Low
Solution:
- Update to latest version when it is available
Phorum Multiple Vulnerabilities
Published by April 23rd, 2007 in Access Bypass, Cross Site Scripting and SQL Injection.Application: Phorum
Version: Prior 5.1.22
Vendor’s URL: http://www.phorum.org/
Bug Type: Cross site attacks and Sql injections
Risk Level: High
Solution:
- Update to version 5.1.22
- Turn off registered_globals
Application: PHP-Nuke
Version: 7.9 or earlier
Vendor’s URL: http://phpnuke.org/
Bug Type: Sql injections and Access bypassing
Risk Level: Medium
Solution:
- Waiting for updates or patches from vendor
- Set “magic_quotes_gpc” in php.ini to On
Application: Phpwiki
Version: 1.3.12p3 or earlier
Vendor’s URL: http://phpwiki.sourceforge.net/
Bug Type: Access Bypass
Risk: Medium
Solution:
- Disable the UpLoad functionality by changing the permission of the file “lib/plugin/UpLoad.php” under phpwiki install directory.
- Delete the Upload.php file or move it to protected location.
Application: UseBB
Version: 1.0.5 or earlier
Vendor’s URL: http://www.usebb.net/
Bug Type: Information Leaking
Risk: Low
Criteria:
- “register_globals” is turned on
Solution:
- Upgrade to version 1.0.6
- http://www.usebb.net/community/topic.php?id=1541
Application: OpenAds
Version: 2.0.11-pr1 or earlier
Vendor’s URL: http://www.openads.org/
Bug Type: Cross Site Scripting
Risk: Medium
Solution:
- Update to version 2.0.11-pr1
- http://www.openads.org/downloads.html
Drupal DB Admin Module Multiple Vulnerabilities
Published by April 13th, 2007 in Cross Site Scripting.Application: Drupal Database Administration Module
Version: 4.7.x-1.1 or earlier
Vendor’s URL: http://drupal.org/
Bug Type: Cross Site Scripting
Risk: Medium
Solution:
- Update to 4.7.x.-1.2
- http://drupal.org/node/135552
Application: PunBB
Version: 1.2.14 or early
Vendor’s URL: http://www.punbb.org
Bug Type: Cross Site Scripting
Risk: Low
Criteria: Some exploitations requires administrator privileges.
Solution:
- Update to version 1.2.15
- http://www.punbb.org/downloads.php
Application: Xoops Jobs Module
Version: 2.4 or earlier
Vendor’s URL: http://www.xoops.org/
Bug Type: Sql Injection
Risk: Medium
Solution:
- Edit the source code to ensure that input is properly sanitized
- Waiting for official patch or update
Application: WebSpell CMS
Version: 4.01.02 or earlier
Vendor’s URL: http://cms.webspell.org/
Bug Type: Information Leaking
Risk: Low
Criteria:
- register_globals must be enabled.
- PHP version prior to 4.3.0 must be used
Solution:
- Waiting for official patch or update
- Edit the source code to ensure the input is properly sanitized
Application: Xoops WF-Links Module
Version: 1.03 or earlier
Vendor’s URL: http://www.xoops.org/
Bug Type: Sql Injection
Risk: Medium
Solution:
- Waiting for official patch or update
- Edit the source code to ensure that input is properly sanitized
Application: Xoops Rha7 Downloads Module
Version: 1.x
Vendor’s URL: http://www.xoops.org/
Bug Type: Sql Injection
Risk: Medium
Solution:
- Edit the source code to ensure that input is properly sanitized
- Waiting for official patch or update
Application: Xoops WF-Snippets Module
Version: WF-Snippets 1.03 or earlier
Vendor’s URL: http://www.xoops.org/
Bug Type: Sql Injections
Risk: Medium
Solution:
- Edit the source code to ensure that input is properly sanitized
- Waiting for official patch or update
Wordpress “”PHP_SELF” XSS
Published by March 26th, 2007 in Content Management and Cross Site Scripting.Application: Wordpress CMS
Version: 2.1.2 or below
Vendor’s URL: http://wordpress.org/
Bug Type: Cross Site Scripting
Risk: Low
Solution:
- Update to version 2.0.10-RC2 or 2.1.3-RC2
PHPX XSS & Sql Injections
Published by March 26th, 2007 in Content Management, Cross Site Scripting and SQL Injection.Application: PhpX
Version: 3.5.15 or below
Vendor’s URL: http://www.phpx.org
Bug Type: Cross Site Scripting and Sql Injections
Risk: High
Solution:
- Edit the source code to ensure that input is properly sanitized
- Waiting for the official patches that will be available at here
