eVuln Security Advisories
We are looking for new vulnerabilities in open source web applications to keep up to date and improve our skills in website security. The result of this work is displayed in the eVuln Security Advisories list. Currently our own advisories list has 175 security advisories including 209 CVE entries.
The list of security advisories published by eVuln.
- X-Forwarded-For XSS in Simple Machines Forum - SMF
2006.02.24
Version: 1.0.6
Status: Unpatched. Vendor notyfied.
Risk level: low - XSS Vulnerability in Easy Forum
2006.02.21
Version: 2.5
Status: Patched
Risk level: low - Multiple Vulnerabilities in Skate Board
2006.02.17
Version: 0.9
Status: Unpatched. No reply from developer(s)
Risk level: high - Referer XSS in E-Blah Platinum
2006.02.16
Version: 9.7
Status: Patched
Risk level: medium - Multiple flaws in Leif M. Wright Blog
2006.02.15
Version: 3.5
Status: Unpatched. No reply from developer(s)
Risk level: high - Multiple Vulnerabilities in PerlBlog
2006.02.15
Version: 1.09b 1.09 1.08 - checked
Status: Unpatched. No reply from developer(s)
Risk level: high - BBCode XSS Vulnerability in M. Blom HTML:BBCode
2006.02.14
Version: 1.04 1.03 and earlier
Status: Patched
Risk level: medium - BBCode XSS Vulnerabilities in My Blog
2006.02.13
Version: My Blog 1.63
Status: Patched
Risk level: low - Arbitrary File Disclosure Vulnerability in Quirex
2006.02.11
Version: 2.0.2 2.0 and earlier
Status: Unpatched. No reply from developer(s)
Risk level: high - Guestex XSS Vulnerability
2006.02.11
Version: 1.0
Status: Unpatched. No reply from developer(s)
Risk level: low