Papoo forumthread.php msgid Variable SQL Injection

Network Security News – Wednesday, July 19, 2006 Events

Papoo forumthread.php msgid Variable SQL Injection

Papoo contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the forumthread.php script not properly sanitizing user-supplied input to the 'msgid' variable. This may allow an attacker to inject or manipulate SQL queries in the backend database.. Read more at osvdb.org/27118

Papoo interna/hilfe.php Multiple Variable XSS

Papoo contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "titel" and "ausgabe" variables upon submission to the interna/hilfe.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.. Read more at osvdb.org/27117

Microsoft IE DXImageTransform.Microsoft.Gradient Multiple Property Overflow

A remote overflow exists in Internet Explorer. A specialy crafted HTML page using client-side script with the ActiveX object "DXImageTransform.Microsoft.Gradient.1" could cause the browser to crash, and potentially lead to arbitrary code execution. This is due to MSIE failing to handle large values in the "StartColorStr" and "EndColorStr" properties of the ActiveX object resulting in a stack overflow.. Read more at osvdb.org/27109

PHPMailList list.dat Subscriber E-mail List Disclosure

PHP.WarpedWeb.Net PHPMailList contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote user requests the 'list.dat' file directly via the URI, which will disclose the subscriber e-mail list resulting in a loss of confidentiality.. Read more at osvdb.org/27017