Advisory: |
KaiBB 2.0.1 XSS and SQL Injection vulnerabilities
|
Advisory ID: |
SSCHADV2011-027
|
Author: |
Stefan Schurtz
|
Affected Software: |
Successfully tested on KaiBB 2.0.1 |
Vendor URL: |
|
Vendor Status: |
informed |
CVE-ID: |
- |
======================
Vulnerability Description:
======================
KaiBB 2.0.1 is prone to XSS and SQL Injection vulnerabilities
Continue reading "SSCHADV2011-027 - KaiBB 2.0.1 XSS and SQL Injection vulnerabilities"
Advisory: |
openEngine 2.0 ‘key’ Blind SQL Injection vulnerability
|
Advisory ID: |
SSCHADV2011-026 |
Author: |
Stefan Schurtz
|
Affected Software: |
Successfully tested on openEngine 2.0 100226 |
Vendor URL: |
|
Vendor Status: |
informed |
CVE-ID: |
- |
======================
Vulnerability Description
======================
The ‘key’ parameter in openEngine 2.0 is prone to a Blind SQL Injection
Continue reading "SSCHADV2011-026 - openEngine 2.0 'key' Blind SQL Injection vulnerability"
Advisory:
|
Contao 2.10.1 Cross-site scripting vulnerability
|
Advisory ID:
|
SSCHADV2011-025
|
Author:
|
Stefan Schurtz
|
Affected Software:
|
Successfully tested on Contao 2.10.1
|
Vendor URL:
|
|
Vendor Status:
|
fixed
|
CVE-ID:
|
|
======================
Vulnerability Description:
======================
Contao 2.10 is prone to a Cross-site scripting vulnerability
Continue reading "SSCHADV2011-025 - Contao 2.10.1 Cross-site scripting vulnerability"