Exabytes Security Portal

eGroupWare File Upload

TL Guan — Fri, 18 Apr 2008 10:10:05 +0000

Application: eGroupWare
Affected Version: prior to 1.4.004.
Vendor’s URL: eGroupWare
Bug Type: File Inclusion
Risk Level: Critical

Solution:
Update to version 1.4.004.

Joomla Jom Comment Component Unspecified SQL Injection

TL Guan — Fri, 18 Apr 2008 10:08:26 +0000

Application: Joomla Jom Comment Component
Affected Version: version 2.0 and other versions.
Vendor’s URL: Joomla Jom Comment Component
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Update to version 2.2.

WordPress WP-Download Plugin SQL Injection

TL Guan — Fri, 18 Apr 2008 10:07:06 +0000

Application: WordPress WP-Download Plugin
Affected Version: 1.2 and other versions.
Vendor’s URL: WordPress WP-Download Plugin
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Update to version 1.2.1.

AuraCMS SQL Injection

TL Guan — Fri, 18 Apr 2008 10:05:37 +0000

Application: AuraCMS
Affected Version: 2.2.1 and other versions.
Vendor’s URL: AuraCMS
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitized.

Simple Gallery XSS

TL Guan — Fri, 18 Apr 2008 10:04:24 +0000

Application: Simple Gallery
Affected Version: 2.2 and other versions.
Vendor’s URL: Simple Gallery
Bug Type: Cross Site Scripting
Risk Level: Medium

Solution:
Edit the source code to ensure that input is properly sanitized.

Drupal Webform Module Unspecified Script Insertion

TL Guan — Fri, 18 Apr 2008 10:03:00 +0000

Application: Drupal Webform Module
Affected Version: prior to version 5.x-1.10.
Vendor’s URL: Drupal Webform Module
Bug Type: Script Insertion
Risk Level: Critical

Solution:
Update to version 5.x-1.10.

PHP Photo Gallery SQL Injection

TL Guan — Fri, 18 Apr 2008 10:01:14 +0000

Application: PHP Photo Gallery
Affected Version:
Vendor’s URL: PHP Photo Gallery
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitized.

Wikepage Information Disclosure

TL Guan — Fri, 18 Apr 2008 09:56:31 +0000

Application: Wikepage
Affected Version: version Opus 13 2007.2 and other versions.
Vendor’s URL: Wikepage
Bug Type: Information Disclosure
Risk Level: Medium

Solution:
Edit the source code to ensure that input is properly sanitized.

Drupal Menu System Security Bypass

TL Guan — Fri, 18 Apr 2008 09:54:52 +0000

Application: Drupal Menu System
Affected Version: 6.2 and prior versions.
Vendor’s URL: Drupal Menu System
Bug Type: Security Bypass
Risk Level: Critical

Solution:
Update to Drupal 6.2 or apply patch.

Gallery Script Lite Information Disclosure

TL Guan — Fri, 18 Apr 2008 09:49:42 +0000

Application: Gallery Script Lite
Affected Version:
Vendor’s URL: Gallery Script Lite
Bug Type: Information Disclosure
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitized.

KnowledgeQuest SQL Injection and Security Bypass

TL Guan — Fri, 18 Apr 2008 09:47:37 +0000

Application: KnowledgeQuest
Affected Version: 2.6 and other versions.
Vendor’s URL: KnowledgeQuest
Bug Type: Security Bypass
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitized. Restrict access to the admincheck.php

Drupal Simple Access Module Security Bypass

TL Guan — Fri, 18 Apr 2008 09:46:05 +0000

Application: Drupal Simple Access Module
Affected Version: 5.x-1.2-2 and prior versions.
Vendor’s URL: Drupal Simple Access Module
Bug Type: Access bypass
Risk Level: Critical

Solution:
Update to version 5.x-1.3.

LiveCart SQL Injection Vulnerability

TL Guan — Fri, 18 Apr 2008 09:44:47 +0000

Application: LiveCart
Affected Version: 1.1.1 trial version and other versions.
Vendor’s URL: LiveCart
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitized.

KwsPHP ConcoursPhoto Module SQL Injection

TL Guan — Fri, 18 Apr 2008 09:43:28 +0000

Application: KwsPHP ConcoursPhoto Module
Affected Version: 2.0 and prior version.
Vendor’s URL: KwsPHP ConcoursPhoto Module
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Update to version 2.1.

Coppermine Photo Gallery SQL Injection

TL Guan — Fri, 18 Apr 2008 09:42:19 +0000

Application: Coppermine Photo Gallery
Affected Version: 1.4.16 and other versions.
Vendor’s URL: Coppermine Photo Gallery
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Update to version 1.4.17.

NewsOffice File Inclusion Vulnerability

TL Guan — Fri, 18 Apr 2008 09:41:09 +0000

Application: NewsOffice
Affected Version: 1.1 and prior versions.
Vendor’s URL: NewsOffice
Bug Type: File Inclusion
Risk Level: Critical

Solution:
Update to version 1.1.1.

phpkb Knowledge Base SQL Injection

TL Guan — Fri, 18 Apr 2008 09:39:57 +0000

Application: phpkb Knowledge Base
Affected Version: 1.5 and 2.0 and other versions.
Vendor’s URL: phpkb Knowledge Base
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitized.

1024 CMS SQL Injection and File Inclusion

TL Guan — Fri, 18 Apr 2008 09:38:42 +0000

Application: 1024 CMS
Affected Version: 1.4.1 and other versions.
Vendor’s URL: 1024 CMS
Bug Type: SQL Injection, File Inclusion
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitized and verified.

cpCommerce Multiple Vulnerabilities

TL Guan — Fri, 18 Apr 2008 09:37:18 +0000

Application: cpCommerce
Affected Version: 1.1.0 and other versions.
Vendor’s URL: cpCommerce
Bug Type: Cross Site Scripting and SQL injection
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitized and verified.

Coppermine Photo Gallery SQL Injection

TL Guan — Fri, 18 Apr 2008 09:35:29 +0000

Application: Coppermine Photo Gallery
Affected Version: 1.4.17 and other versions.
Vendor’s URL: Coppermine Photo Gallery
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Update to version 1.4.18.

phpBB Security Bypass Vulnerabilities

TL Guan — Fri, 18 Apr 2008 09:34:06 +0000

Application: phpBB
Affected Version: 3.0.0.
Vendor’s URL: phpBB
Bug Type: Access Bypass
Risk Level: Critical

Solution:
Update to version 3.0.1.

OSI Affiliate XSS

TL Guan — Fri, 18 Apr 2008 09:32:28 +0000

Application: OSI Affiliate
Affected Version:
Vendor’s URL: OSI Affiliate
Bug Type: Cross Site Scripting
Risk Level: Medium

Solution:
Edit the source code to ensure that input is properly sanitized.

CubeCart Two XSS

TL Guan — Fri, 18 Apr 2008 09:31:03 +0000

Application: CubeCart
Affected Version: 4.2.1 and other versions.
Vendor’s URL: CubeCart
Bug Type: Cross Site Scripting
Risk Level: Medium

Solution:
Edit the source code to ensure that input is properly sanitized.

RunCMS Photo Module SQL Injection

TL Guan — Fri, 18 Apr 2008 09:29:34 +0000

Application: RunCMS Photo Module
Affected Version: 3.02 and other versions.
Vendor’s URL: RunCMS Photo Module
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitized.

e107 my_gallery Plugin Information Disclosure

TL Guan — Fri, 18 Apr 2008 09:27:24 +0000

Application: e107 my_gallery Plugin
Affected Version: 2.3 and other versions.
Vendor’s URL: e107 my_gallery
Bug Type: Information Disclosure
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitized.

Photo Cart “amessage” XSS

TL Guan — Fri, 18 Apr 2008 09:25:27 +0000

Application: Photo Cart
Affected Version: 4.1 and other versions.
Vendor’s URL: Photo Cart
Bug Type: Cross Site Scripting
Risk Level: Medium

Solution:
Apply patch. http://www.picturespro.com/sp/

Joomla rekry!Joom Component SQL Injection

TL Guan — Fri, 18 Apr 2008 09:23:36 +0000

Application: Joomla rekry!Joom Component
Affected Version: 1.0.0 and other versions.
Vendor’s URL: Joomla rekry!Joom Component
Bug Type: SQL Injection
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitized.

Joomla Custompages Component File Inclusion

TL Guan — Fri, 18 Apr 2008 09:21:58 +0000

Application: Joomla
Affected Version: 1.1 and other versions.
Vendor’s URL: Joomla Custompages Component
Bug Type: access bypass, file inclusion
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly verified.

DotNetNuke Multiple Vulnerabilities

TL Guan — Fri, 18 Apr 2008 09:19:13 +0000

Application: DotNetNuke
Affected Version: version prior to 4.8.2.
Vendor’s URL: http://www.dotnetnuke.com/
Bug Type: Privilege escalation, access bypass
Risk Level: Critical

Solution:
Update to version 4.8.2.
http://www.dotnetnuke.com/tabid/125/default.aspx

phpAddressBook Multiple Vulnerabilities

TL Guan — Fri, 18 Apr 2008 09:16:21 +0000

Application: phpAddressBook
Affected Version: 2.11 and other versions.
Vendor’s URL: phpAddressBook
Bug Type: Cross Site Scripting and file inclusion
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly verified and sanitized.