exploits , vulnerabilities , articles , ArabPortal Multiple Input Validation Vulnerabilities

Title	ArabPortal Multiple Input Validation Vulnerabilities
Published	2006-04-04-12:00AM
Updated	2006-04-05-05:13PM
Class	Input Validation Error
CVE
Remote	Yes
Local	No
Credit	o.y.6@hotmail.com is credited with the discovery of these vulnerabilities.
Vulnerable	Arab Portal Arab Portal 2.0.1 Stable
Not Vulnerable
Code	These issues can be exploited through a web client. Example URIs have been provided: http://www.example.com/forum.php?mineID=[SQL Injection] http://www.example.com/forum.php?action=view&id=1&cat_id=3&adminJump=D3vil-0x1[HTML - XSS ] http://www.example.com/forum.php?action=view&id=1&cat_id=3&forum_middle=D3vil-0x1[HTML - XSS ] http://www.example.com/members.php?action=changepass&form=D3vil-0x1[HTML - XSS ] http://www.example.com/members.php?action=edit&form=D3vil-0x1[HTML - XSS ] http://www.example.com/pm.php?action=reply&form=D3vil-0x1[HTML - XSS ] http://www.example.com/pm.php?action=sendmsg&form=D3vil-0x1[HTML - XSS ] http://www.example.com/mail.php?action=sendpage&form=D3vil-0x1[HTML - XSS ] http://www.example.com/mail.php?action=sendtome&form=D3vil-0x1[HTML - XSS ] http://www.example.com/mail.php?action=sendtousers&userid=1&form=D3vil-0x1[HTML - XSS ]
TXT

Vulnerabilities - newest 10 RSS | More

2009-12-16 Horde Application Framework Administration Interface Cross-Site Scripting Vulnerability
2009-12-16 Mozilla Firefox and SeaMonkey MFSA 2009-65 through -71 Multiple Vulnerabilities
2009-12-16 Merkaartor Insecure Temporary File Creation Vulnerability
2009-12-15 TYPO3 Watchdog (aba_watchdog) Unspecified Information Disclosure Vulnerability
2009-12-15 PostgreSQL Index Function Session State Modification Local Privilege Escalation Vulnerability
2009-12-15 PostgreSQL NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
2009-12-15 IBM DB2 prior to 9.5 Fix Pack 5 Multiple Unspecified Security Vulnerabilities
2009-12-15 Sun Ray Server Software Desktop Session Handling Local Security Bypass Vulnerability
2009-12-15 Mozilla Firefox Sage Extension RSS Feeds Cross Domain Scripting Vulnerability
2009-12-15 Adobe Reader and Acrobat (CVE-2009-4324) Remote Code Execution Vulnerability

SECURITY RSS FEEDS

Advertising

Copyright 2007, SecurityDot
Wed, 16 Dec 2009 20:17:07 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
ratna kareena+po freakhole. www.dy9484 newsexygir malayalam news for c rangdebasa AN&amp Www.school sania merz Celeb nake Lombok nge php%20news trishsexph Www.xxxved malayalam Nude sania WWW.Fun Ma news for c blackladys Wallpapers facesittin xem phim s sexinden php 4.3.10 php-nuke 2 poransex.c news for c sex pictur www.yotube glftpd guest book 200 /compo Sexy girls Www.videos shahvatsar www.yahoom HM-Portal rajinder freepornvi news for c Www sexy g www.18qt.c www.688qq. women vide www.vkonta www.qianmi news+for+c news+for+c