eVuln Security Advisories
We are looking for new vulnerabilities in open source web applications to keep up to date and improve our skills in website security. The result of this work is displayed in the eVuln Security Advisories list. Currently our own advisories list has 175 security advisories including 209 CVE entries.
The list of security advisories published by eVuln.
- time SQL Injection vulnerability in WSN Guest
2011.02.02
Version: 1.24
Status: Unpatched. vendor notified. No reply from developer(s).
Risk level: medium - wsnuser Cookie SQL Injection vulnerability in WSN Guest
2011.02.01
Version: 1.24
Status: Unpatched. vendor notified. No reply from developer(s).
Risk level: medium - elimina SQL Injection vulnerability in Alguest
2011.01.04
Version: 1.1c-patched
Status: Unpatched. vendor notified. No reply from developer(s).
Risk level: medium - fold and site SQL Injections in WikLink
2011.01.01
Version: 0.1.3
Status: Unpatched. vendor notified. No reply from developer(s).
Risk level: medium - id SQL Injection in WikLink
2010.12.24
Version: 0.1.3
Status: Unpatched. vendor notified. No reply from developer(s).
Risk level: medium - SQL Injection in WikLink
2010.12.23
Version: 0.1.3
Status: Unpatched. vendor notified. No reply from developer(s).
Risk level: medium - search - Non-persistent XSS in Social Share
2010.12.11
Version: 2010-06-05
Status: Unpatched. vendor notified. No reply from developer(s).
Risk level: low - HTTP Response Splitting in Social Share
2010.12.10
Version: 2010-06-05
Status: Unpatched. vendor notified. No reply from developer(s).
Risk level: low - Authentication Bypass by SQL Injection in Social Share
2010.12.09
Version: 2010-06-05
Status: Unpatched. vendor notified. No reply from developer(s).
Risk level: medium - postid SQL Injection in Social Share
2010.12.08
Version: 2010-06-05
Status: Unpatched. vendor notified. No reply from developer(s).
Risk level: medium