|
Search
|
|
You can use the form below to search our site. Just enter the
keywords to search.
|
|
 |
|
Results 36 - 85 of 58
|
Page 1.7 of 2
|
|
back
1
2
- Next
|
Results per-page: 5 | 10 | 20 | 50
|
| Title |
Multiple Vulnerabilities In phpGedView
|
| Info |
The phpGedView project parses GEDCOM 5.5 genealogy files and displays
them on the Internet in a format similar to PAF. It is one of the top
10 most popular projects at SourceForge. However, in addition to the
vulnerabilities found by Vietnamese Security Group last week in
phpGedView, GulfTech Security Research has also found a number of
vulnerabilities which are now fixed in the latest beta release. These
issues include SQL injection vulnerabilities, path disclosure
vulnerabilities, cross site scriting vulnerabilities, and a denial
of service vulnerability. Users are strongly encouraged to upgrade. |
| Date |
January 13, 2022 |
| BID |
Not Available
|
| Credit |
James Bercegay |
| Title |
Multiple MetaDot Vulnerabilities Found
|
| Info |
MetaDot is a very popular Open Source portal application written in
Perl and powered by MySql. It's users range from home users to
the likes of governments, banks, universities and even NASA ;) It has
been found to be prone to SQL Injection, and XSS attacks due to not
properl validating the user supplied input that it receives. It also
divulges a great deal of information about it's host when calling
certain invalid arguments. These vulnerabilities are believed to
affect all versions including 5.6.5.4b5 and below. The MetaDot
Corporation team has addresses the issues in the latest version
though, and users are strongly encouraged to upgrade as soon as
possible. |
| Date |
January 12, 2022 |
| BID |
9439
|
| Credit |
James Bercegay |
| Title |
Vulnerabilities In PostNuke 0.726 Phoenix
|
| Info |
PostNuke is a popular Open Source CMS (Content Management
System) used by millions of people all across the world.
GulfTech Security Research has recendly found a couple of
vulnerabilities in the popular open source CMS (Content
Managment System) PostNuke. Versions affected are 0.726
Phoenix and though not confirmed older versions may be
affected as well. These vulnerabilities have been resolved
by the developers very promptly and a patch is available at
the official PostNuke website. The vulnerabilities discovered
are SQL Injection and Cross Site Scripting. More details of
the vulnerabilities available .
|
| Date |
January 03, 2022 |
| BID |
7047
|
| Credit |
James Bercegay |
| Title |
Multiple osCommerce Vulnerabilities
|
| Info |
GulfTech Security Research has found yet more vulnerabilities in the popular ecommerce product osCommerce. These vulnerabilities include SQL Injection, Denial Of Service, and Cross Site Scripting. While there has been several vulnerabilities found in this product by us lately, I would like to point out that these finds only make for a more secure product. I do think that the next release of osCommerce (MS3) will be one of the most secure ecommerce products around. The osCommerce development team have been prompt in resolving these issues. Anyway, check out the full detailed report inside and the osCommerce website for a fix :o) |
| Date |
December 22, 2021 |
| BID |
9275
9277
|
| Credit |
James Bercegay |
| Title |
Multiple vulnerabilities in ASPapp Products
|
| Info |
ASPapp offers a wide range of web applications written in .asp Amongst them is the fairly popular AspApp Portal. Several of these products have very weak security and can allow an attacker to completely take over an affected portal or site running the vulnerable software. The vulnerabilities include Script Injection, Account Hijacking, Privilege Escalation, Cross Site Scripting, and Plaintext Authentication Credentials. |
| Date |
December 18, 2021 |
| BID |
9250
|
| Credit |
James Bercegay |
| Title |
Autorank PHP SQL Injection Vulnerability
|
| Info |
Autorank PHP is a widely used topsite script offered by JMB Software.
It is vulnerable to SQL Injection attacks in the "accounts.php" file.
These vulnerabilities can be exploited by a malicious user via the lost
password form, account edit form, or the registration form. The
vulnerabilities leave user accounts open to compromise as well as the
entire database that is being used for a particular top site. |
| Date |
December 18, 2021 |
| BID |
9251
|
| Credit |
James Bercegay |
| Title |
osCommerce Malformed Session ID XSS Vulnerability
|
| Info |
osCommerce is a very powerful open source e-commerce solution. It has been found however to be vulnerable to an XSS vuln due to the session id parameter not being properly sanitized. This seems to take place only over a secure, SSL connection, however it is believed to affect even regular http connections in the current CVS version. In some cases (namely the CVS version) the full path of the web directory may also be exposed when exploiting this vulnerability. |
| Date |
December 17, 2021 |
| BID |
9238
|
| Credit |
James Bercegay |
| Title |
Multiple Vulnerabilities In Aardvark Topsites
|
| Info |
Aardvark Topsites is a very powerful, and popular Topsites Ranking
web application. Versions prior to 4.1.1 are vulnerable to a number
of issues though. These issues include SQL Injection, Path Disclosure,
Plaintext Weaknesses, and information disclosure vulnerabilities. You
can update your Aardvark Topsite at the official download site. All
users should upgrade as soon as possible.
|
| Date |
December 16, 2021 |
| BID |
9231
|
| Credit |
James Bercegay |
| Title |
Invision Power Board SQL Injection Vulnerability
|
| Info |
Invision Power Board is one of the most popular and powerful forums available today. It is used by millions of people worldwide and businesses alike. There is however an SQL Injection vulnerability that affects ALL versions (even the non public releases). The people at Invision power were very prompt and professional in addressing the issue and there is now an available fix less than a week after I discovered the vulnerability. Details and a link to the fix are available in the report by GulfTech Security Research. |
| Date |
December 16, 2021 |
| BID |
9232
|
| Credit |
James Bercegay |
| Title |
Invision Power Top Site List SQL Injection
|
| Info |
Invision Power Top Site List is a flexible site ranking script written in PHP. Featuring an impressive feature set with a user-friendly interface. However It is vulnerable to SQL injection. This flaw is hard to exploit, thus it will not be addressed until the next release of the Invision Power Top Site List. No patches or immediate upgrade will be released. |
| Date |
December 15, 2021 |
| BID |
9229
|
| Credit |
James Bercegay |
| Title |
Multiple Vulnerabilities In DU Ware Products
|
| Info |
DU Ware are a company that offers a very large number of web based applications for both purchase and free download. Their products are vulnerable to a substantial number of attacks, and contain many weaknesses. This includes but is not limited to: Account HiJacking, Code Execution, Arbitrary File Upload, Privilege Escalation and more. There are currently no fixes for these issues, and no patches will be issued. I guess thier customers will have to wait til the new software versions to have thier data and servers be secure.
|
| Date |
December 15, 2021 |
| BID |
9246
|
| Credit |
James Bercegay |
| Title |
Security Issues In CGINews And CGIForum
|
| Info |
CGINews and CGIForum are two fairly popular scripts by Markus Triska.
CGINews is a multi-user Web site news posting system written in Perl.
And CGIForum is A template based discussion board also written in Perl.
However they both rely on a very weak encryption algorithm that can be
decrypted easily. The author has no plans on switching to a more secure
one way encryption, so if security is a concern try another forum system. |
| Date |
December 14, 2021 |
| BID |
9214
|
| Credit |
James Bercegay |
| Title |
osCommerce 2.2-MS1 SQL Injection Vulnerability
|
| Info |
osCommerce is one of the most popular Open Source e-commerce solutions in the world today.
It comes with many out of the box features and is constantly being developed by the Open
Source Community. Recently GulfTech Security Research has discovered an SQL Injection vuln
in the create_account_process.php and the account_edit_process.php files. This vulnerability
is present in osCommerce 2.2-MS1 but does not appear to be an issue in osCommerce 2.2-MS2.
Advice to all osCommerce shop owners is to upgrade to the latest version of osCommerce by
clicking here. |
| Date |
December 12, 2021 |
| BID |
9211
|
| Credit |
James Bercegay |
| Title |
Multiple Vulnerabilities In Snitz Forums 2000
|
| Info |
Snitz forums is a full-featured UBB-style ASP discussion
board application used by thousands of people across the
web. Recently I found many serious vulnerabilities in this
application that may allow an attacker to take over an
entire Snitz forum. The vulnerabilities include cross
site scripting issues, cookie authentication bypass
vulnerability, and a password reset vulnerability. Users
are encouraged to upgrade as soon as possible. |
| Date |
June 16, 2022 |
| BID |
7922
7924
7925
|
| Credit |
James Bercegay |
| Title |
Multiple Vulnerabilities In Max Web Portal
|
| Info |
MaxWebPortal is a web portal and online community
system which includes advanced features such as
web-based administration, poll, private/public
events calendar, user customizable color themes,
classifieds, user control panel, online pager,
link, file, article, picture managers and much
more. Easy-to-use and powerful user interface
allows members to add news, content, write
reviews and share information among other
registered users. MaxWebPortal has multiple
vulnerabilities which include cross site
scripting, hidden form weaknesses, Database
exposure, and a password reset vulnerability. |
| Date |
June 06, 2022 |
| BID |
7837
|
| Credit |
James Bercegay |
| Title |
QPC MegaBrowser Multiple Vulnerabilities
|
| Info |
QPC MegaBrowser is a webserver / FTP server in one.
Aimed at home users and small business who would like
to run their own FTP and HTTP servers. However it is
vulnerable to a directory traversal vulnerability
which allows access to any file on the system as well
as directory viewing of the root web directory. There
is also a user enumeration vulnerability in the FTP
server that allows an attacker to enumerate valid
usernames. |
| Date |
June 04, 2022 |
| BID |
7802
7803
|
| Credit |
James Bercegay |
| Title |
Vulns In Pablo Software Solutions FTP Service 1.2
|
| Info |
FTPService.exe is a service-version of Pablo's FTP Server. This service enables you to have the Pablo FTP server active even when you're not logged into Windows. By default this application is totally open to compromise, and also leaves the users machine open to attacks by allowing access to any file in the C drive. This can be prevented by changing privileges of, or disabling access to the anonymous account. The passwords for Pablo FTP Service are also stored in plaintext, which can definitely be a big threat if the default anonymous account is enabled.
|
| Date |
June 03, 2022 |
| BID |
7799
7801
|
| Credit |
James Bercegay |
| Title |
WinMX Plaintext Password Vulnerabilities
|
| Info |
WinMX 2.6 is an older version of the popular file
sharing client WinMX. While the current version is
3.31, 2.6 still remains quite popular. Especially
amongst users on private networks. I believe this
is largely due to the fact that 2.6 does not have
the option to output .wsx file (WinMX server list
files) This helps keep the addresses for private
OpenNap servers out of the hands of uninvited users
(amongst other reasons). The problems with WinMX 2.6
is that it provides pretty much NO password protection.
This can be exploited both locally and remotely. Again,
I think all of us have seen the bad habit that most
people have of using the same password for multiple
accounts etc etc. |
| Date |
June 02, 2022 |
| BID |
7771
|
| Credit |
James Bercegay |
| Title |
Vulnerabilities In P-Synch Password Management
|
| Info |
P-Synch is a total password management solution. It is intended to
reduce the cost of ownership of password systems, and simultaneously
improve the security of password protected systems. This is done
through: Password Synchronization. Enforcing an enterprise wide
password strength policy. Allowing authenticated users to reset their
own forgotten passwords and enable their locked out accounts.
Streamlining help desk call resolution for password resets. P-Synch is
available for both internal use, on the corporate Intranet, as well as
for the Internet deployment in B2B and B2C applications. There are a few
vulnerabilities in P-Synch such as path disclosure, cross site scripting,
and arbitrary file inclusion. Users should upgrade immediately. |
| Date |
May 30, 2022 |
| BID |
7740
7745
7747
|
| Credit |
James Bercegay |
| Title |
Invision Board Plaintext Password Vulnerability
|
| Info |
Invision Board has been stores restricted forum credentials as plain text
embedded in cookie data. These are the forums where you need a password to
get access into the forum. If the Invision Board admin 'pass protected'
option is activated for a specific forum, on attempted access to the
controlled area, the restricted forum password is stored as plaintext in a
local cookie. This is dangerous because if an attacker can steal the legit
users cookie via cross site scripting or some other method, then they can
gain access to the restricted forum(s). This vulnerability affects all
versions of Invision Power Board. Users should under no circumstances
disclose any sensitive or personal information on these "restricted" forums,
as they are not secure and prone to attack.
|
| Date |
April 25, 2022 |
| BID |
7440
|
| Credit |
James Bercegay |
| Title |
JpegX Password Bypass Vulnerability
|
| Info |
Jpegx is a modern day application of steganography. It will
encrypt and hide messages in jpeg files to provide ample medium
for sending secure information. The images remain visually
unchanged but the code inside is altered to hide your message.
Anyone with the Jpegx program could read your message as long
as they know the password that you encrypted it with. There lies
a vulnerability that allows the password feature to be pretty
much useless, as it will accept any password. Users should upgrade
immediately. |
| Date |
April 20, 2022 |
| BID |
7298
|
| Credit |
James Bercegay |
| Title |
Multiple Vulnerabilities In PHP Links
|
| Info |
phpLinks is an open source free PHP script. phpLinks
allows you to run a very powerful link farm or search
engine. phpLinks has multilevel site categorization,
infinite threaded search capabilities and more. phpLinks
is prone to HTML injection due to a vulnerability in
the search feature. Search queries are not sufficiently
sanitized of HTML and script code. These search queries
may potentially be displayed to other users when the
most popular searches are viewed. If an attacker
includes malicious HTML or script code in these queries,
it is possible that the attacker-supplied code may be
rendered in the web client software of other users. This
is just one of several code injection issues in phpLinks. |
| Date |
January 17, 2022 |
| BID |
6632
6633
|
| Credit |
James Bercegay |
| Title |
Vulnerabilities In PHP Topsites
|
| Info |
PHP TopSites is a PHP/MySQL-based customizable TopList script.
Main features include: Easy configuration config file; MySQL
database backend; unlimited categories, Site rating on incoming
votes; Special Rating from Webmaster; anti-cheating gateway;
Random link; Lost password function; Webmaster Site-approval;
Edit site; ProcessingTime display; Cookies Anti-Cheating; Site
Reviews; Linux Cron Free; Frame Protection and much more. We
have discovered this application has several vulnerabilities.
These vulnerabilities include, but are not limited to: Cross
Site Scripting vulnerabilities, SQL Injection, Script Injection,
and Plaintext password weakness. Users are advised to upgrade
immediately. The most recent version of iTop PHP Topsites can
be found at thier official website. |
| Date |
January 13, 2022 |
| BID |
6621
6622
6623
6625
|
| Credit |
James Bercegay |
|
back
1
2
- Next
|
Results per-page: 5 | 10 | 20 | 50
|
|
Results 36 - 85 of 58
|
Page 1.7 of 2
|
|
|
