Ravens PHP Scripts: Security



Search on This Topic:   
[ Go to Home | Select a New Topic ]
 

 

PHP-Nuke *modules/Search/index.php* SQL Injection More about Read More...

Posted on Wednesday, January 23, 2008 @ 21:35:47 CST in Security
by Raven

SECUNIA ADVISORY ID: SA28624

VERIFY ADVISORY: http://secunia.com/advisories/28624/

CRITICAL: Moderately critical

IMPACT: Manipulation of data, Exposure of sensitive information

SOFTWARE: PHP-Nuke 8.x - http://secunia.com/product/13524/

DESCRIPTION: Foster & 1dt.w0lf have discovered a vulnerability in PHP-Nuke, which can be exploited by malicious people to conduct SQL injection attacks. The vulnerability is confirmed in version 8.0. Other versions may also be affected.
 Read More...


 

 

Microsoft Excel File Handling Code Execution More about Read More...

Posted on Wednesday, January 16, 2008 @ 22:09:17 CST in Security
by Raven

SECUNIA ADVISORY ID: SA28506

VERIFY ADVISORY: http://secunia.com/advisories/28506/

CRITICAL: Extremely critical

IMPACT: System access

SOFTWARE:
Microsoft Excel 2003: http://secunia.com/product/4970/
Microsoft Excel Viewer 2003: http://secunia.com/product/7700/
Microsoft Excel 2002: http://secunia.com/product/4043/
Microsoft Excel 2000: http://secunia.com/product/3054/
Microsoft Office 2000: http://secunia.com/product/24/
Microsoft Office 2003 Professional Edition: http://secunia.com/product/2276/
Microsoft Office 2003 Small Business Edition: http://secunia.com/product/2277/
Microsoft Office 2003 Standard Edition: http://secunia.com/product/2275/
Microsoft Office 2003 Student and Teacher Edition: http://secunia.com/product/2278/
Microsoft Office 2004 for Mac: http://secunia.com/product/8713/

DESCRIPTION: A vulnerability has been reported in Microsoft Excel, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an unspecified error in the handling of Excel files and can be exploited via a specially crafted Excel file with malformed header information. Successful exploitation allows execution of arbitrary code but requires that the user is tricked into opening a malicious Excel file. NOTE: According to Microsoft, this is currently being actively exploited.
 Read More...


 

 

Hot or Not Clone Multiple Vulnerabilities More about Read More...

Posted on Friday, January 04, 2008 @ 18:23:23 CST in Security
by Raven

SECUNIA ADVISORY ID: SA28261

VERIFY ADVISORY: http://secunia.com/advisories/28261/

CRITICAL: Highly critical

IMPACT: Security Bypass, Exposure of sensitive information, System access

SOFTWARE: Hot or Not Clone - http://secunia.com/product/17082/

DESCRIPTION: RoMaNcYxHaCkEr has reported some vulnerabilities in Hot or Not Clone, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, or to compromise a vulnerable system.
 Read More...


 

 

phpNuke Security Alert - ALL VERSIONS More about Read More...

Posted on Friday, January 04, 2008 @ 13:07:24 CST in Security
by Raven

guardian2003 writes:  
It is unfortunate that I have to start the New Year with this news item but I would be failing the members of this community if I did not bring it to your attention.

There exists a vulnerability in virgin phpNuke which affects ALL versions as far as I have been able to ascertain. This vulnerability was reported to the author when phpNuke 7.6 was released and still remains within the virgin code even in the current version (phpNuke 8.1).
 Read More...

Note: 
RavenNuke™ is not susceptible to this exploit


 

 

PHP Multiple Vulnerabilities More about Read More...

Posted on Thursday, January 03, 2008 @ 20:17:05 CST in Security
by Raven

SECUNIA ADVISORY ID: SA28318

VERIFY ADVISORY: http://secunia.com/advisories/28318/

CRITICAL: Moderately critical

IMPACT: Unknown, Security Bypass

SOFTWARE: PHP 4.4.x - http://secunia.com/product/5768/

DESCRIPTION: Some vulnerabilities have been reported in PHP, where some have unknown impact and others can be exploited by malicious users to bypass certain security restrictions. The vulnerabilities are reported in versions prior to 4.4.8.
 Read More...


 

 

Gallery Multiple Vulnerabilities More about Read More...

Posted on Wednesday, December 26, 2007 @ 18:29:02 CST in Security
by Raven

SECUNIA ADVISORY ID: SA28163

VERIFY ADVISORY: http://secunia.com/advisories/28163/

CRITICAL: Highly critical

IMPACT: Security Bypass, Cross Site Scripting, Exposure of sensitive information, System access

SOFTWARE: Gallery 2.x - http://secunia.com/product/5879/

DESCRIPTION: Some vulnerabilities and a weakness have been reported in Gallery, where some have unspecified impacts and others can be exploited by malicious users or malicious people to disclose sensitive information, conduct cross-site scripting attacks, bypass certain security restrictions, and potentially compromise a vulnerable system. The vulnerabilities were reported in versions prior to 2.2.4. Note: In version 2.2.4, the Core module contains enhanced information disclosure protection and includes a fix for an unspecified redirection weakness.
 Read More...


 



Page 34 of 102 (608 total stories) [ << | < | 29 | 30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | > | >> ]  

News ©

Site Info

Last SeenLast Seen
  • neralex
  • corpse
Server TrafficServer Traffic
  • Total: 554,323,555
  • Today: 59,823
Server InfoServer Info
  • Mar 12, 2026
  • 10:33 am CDT
 
 

Site Navigation