Month: March 2006

  • Vulnerability History

    [This was originally published on the OSVDB blog.] Steven Christey (CVE) recently posted about vulnerability history and complexity. The recent sendmail vulnerability has brought up discussion about both topics and adds another interesting piece of history to the venerable sendmail package. One point to walk away with is that while sendmail has a long history…

  • The Web Hacking Incidents Database

    [This was originally published on the OSVDB blog.] The Web Hacking Incidents Database The web hacking incident database (WHID) is a Web Application Security Consortium project dedicated to maintaining a list of web applications related security incidents. WHID goal is to serve as a tool for raising awareness of the web application security problem and…

  • Disclosure: Annuaire (Directory) Multiple Vulnerabilities

    [This was originally published on OSVDB, now gone. VulnDB IDs 24302, 24303] Comment left on feedback page:http://www.brunox.org/modules.php?op=modload&name=FeedBack&file=index While testing your demo of Annuaire (Directory), I noticed a few security vulnerabilities: Many pages are calling /include/lang-en.php which is showing the full installation path. Additionally, directly requesting this script will reveal the full path. inscription.php The comment…

  • Disclosure: ARIA (Accounting Receiving and Inventory Administration) genmessage.php Message Field XSS

    [This was originally published on OSVDB, now gone. VulnDB ID 24255] From: security curmudgeonTo: jflechtner[at]users.sourceforge.netDate: Tue, 28 Mar 2006 11:25:02 -0500 (EST)Subject: ARIA security issue Hey Josh, Not sure if you are still maintaining this project, but while playing with the demo I noticed a small security issue. The genmessage.php script doesn’t sanitize user input…

  • Microsoft Opens IE Bug Database

    [This was originally published on the OSVDB blog.] Microsoft Opens IE Bug Database Microsoft has established a public database to allow Internet Explorer users to report bugs in the Web browser. To post or view bugs, users must sign up for a Passport account on the Microsoft Connect Web site. Microsoft plans to allow non-registered…

  • Disclosure: @1 Event Publisher / @1 Table Publisher Multiple Vulnerabilities

    [This was originally published on OSVDB, now gone. VulnDB 24235, 24236, 24237, 24238] Ticket has been submitted. The ticket number is SCR00994. While looking at some of your scripts, I noticed there are a few security issues: UPOINT @1 Event Publishereventpublisher_admin.htm does not validate input to the Event, Description, Time, Website, and Public Remarks fields.…

  • Disclosure: Andy’s PHP Knowledgebase (aphpkb) Multiple Vulnerabilities

    [This was originally published on OSVDB, now gone. VulnDB IDs 24310, 24311, 24312] From: security curmudgeonTo: aphpkb-devel[at]lists.sourceforge.netDate: Mon, 27 Mar 2006 12:32:18 -0500 (EST)Subject: Andy’s PHP Knowledgebase (aphpkb) security vulnerability Hi Andy, While playing around with your knowledgebase program, I noticed that a few places didn’t sanitize user input, allowing for cross-site scripting (XSS) attacks.…

  • On the Value of Automated Code Scanners

    [This was originally published on the OSVDB blog.] CodeScan Labs recently disclosed that their new product was used on ASP Portal to look for vulnerabilities. These types of scanners are automated and check for common programming errors that lead to vulnerabilities. These types of tools have been around for many years, but are starting to…

  • Disclosure: gtd-php Multiple Vulnerabilities

    [This was originally published on OSVDB, now gone. VulnDB IDs 24149, 24150, 24151, 24152, 24153, 24154, 24155, 24156, 24157, 24158] From: security curmudgeonTo: sjrey[at]users.sourceforge.netDate: Sun, 19 Mar 2006 22:42:24 -0500 (EST)Subject: gtd input sanitization (XSS) vulnerabilities Hey Serge, While playing with the version 0.5 demo of gtd, I noticed that the program doesn’t sanitize user…

  • Disclosure: Prayer Request Board (PRB) addRequest.php Request Field XSS

    [This was originally published on OSVDB, now gone, and touched up slightly for style. VulnDB 23958] From: security curmudgeonTo: todd(at)geekforgod.netDate: Sun, 19 Mar 2006 20:40:21 -0500 (EST)Subject: PRB small security vulnerability Hey Todd, When submitting a new prayer request (addRequest.php), the Request field doesn’t sanitize user input. This allows for cross-site scripting (XSS)attacks. You can…