Monthly Archive: September 2005

BFCommand & Control Server Manager BFCC 1.22_A and earlier, and BFVCC 2.14_B and earlier, relies on the client to enforce permissions and perform actions such as disconnections, which allows remote attackers to bypass administrative...

BFCommand & Control Server Manager BFCC 1.22_A and earlier, and BFVCC 2.14_B and earlier, allows remote attackers to bypass authentication via (1) an unknown attack vector or (2) a NULL (0x00) as a username....

Multiple SQL injection vulnerabilities in Land Down Under (LDU) 801 and earlier allow remote attackers to execute arbitrary SQL commands via the c parameter to (1) events.php, (2) index.php, or (3) list.php. Date published...

comment_delete_cgi.php in Simple PHP Blog allows remote attackers to delete arbitrary files via the comment parameter. Date published : 2005-09-02 http://www.securityfocus.com/bid/14681 http://marc.info/?l=bugtraq&m=112534658510762&w=2

Directory traversal vulnerability in bestmail_edit.cgi in cosmoshop 8.10.78 and earlier allows remote administrators to read arbitrary files via ".." sequences in the file parameter. Date published : 2005-09-02 http://marc.info/?l=bugtraq&m=112534390600093&w=2 http://secunia.com/advisories/16625/

cosmoshop 8.10.78 and earlier stores passwords in plaintext in the database, which allows local users to obtain sensitive information. Date published : 2005-09-02 http://marc.info/?l=bugtraq&m=112534390600093&w=2 http://secunia.com/advisories/16625/

SQL injection vulnerability in the login function for the administration login panel in cosmoshop 8.10.78 allows remote attackers to execute arbitrary SQL commands and bypass authentication via unspecified vectors. Date published : 2005-09-02 http://www.securityfocus.com/bid/14689...

Cross-site scripting (XSS) vulnerability in PHP-Fusion 6.00.107 and earlier allows remote attackers to inject arbitrary web script or HTML via nested, malformed URL BBCode tags. Date published : 2005-09-02 http://www.securityfocus.com/bid/14688 http://marc.info/?l=bugtraq&m=112533836103267&w=2

PHP remote file inclusion vulnerability in al_initialize.php for AutoLinks Pro 2.1 allows remote attackers to execute arbitrary PHP code via an "ftp://" URL in the alpath parameter, which bypasses the incomplete blacklist that only...

The Avatar upload feature in FUD Forum before 2.7.0 does not properly verify uploaded files, which allows remote attackers to execute arbitrary PHP code via a file with a .php extension that contains image...

Cross-site scripting (XSS) vulnerability in Land Down Under (LDU) allows remote attackers to inject arbitrary web script or HTML via a signature. Date published : 2005-09-02 http://www.securityfocus.com/bid/14677 http://marc.info/?l=bugtraq&m=112534018805818&w=2

The iTAN Online-Banking Security System allows remote attackers to obtain TAN numbers via a man-in-the-middle (MITM) attack while the transaction is taking place, which facilitates a "phishing" attack. Date published : 2005-09-02 http://marc.info/?l=bugtraq&m=112498693231687&w=2 http://www.redteam-pentesting.de/advisories/rt-sa-2005-014.txt

SQL injection vulnerability in member.php in MyBulletinBoard (MyBB) allows remote attackers to execute arbitrary SQL statements via the fid parameter. Date published : 2005-09-02 http://www.securityfocus.com/bid/14684 http://marc.info/?l=bugtraq&m=112535137320050&w=2

Looking Glass 20040427 allows remote attackers to execute arbitrary commands via shell metacharacters in the DNS lookup query field. Date published : 2005-09-02 http://www.securityfocus.com/bid/14682 http://marc.info/?l=bugtraq&m=112516327607001&w=2