eVuln Security Advisories
We are looking for new vulnerabilities in open source web applications to keep up to date and improve our skills in website security. The result of this work is displayed in the eVuln Security Advisories list. Currently our own advisories list has 175 security advisories including 209 CVE entries.
The list of security advisories published by eVuln.
- Authentication Bypass Vulnerability in SmE GB Host
2006.02.06
Version: 1.21
Status: Unpatched. No reply from developer(s)
Risk level: medium - Scriptme products BBCode url XSS Vulnerability
2006.02.06
Version:
Status: Unpatched. No reply from developer(s)
Risk level: low - Clever Copy Referer and X-Forwarded-For XSS
2006.02.06
Version: 3.0 2.0 2.0a
Status: Unpatched. No reply from developer(s)
Risk level: medium - XSS and User Data Corruption in PHP Event Calendar
2006.02.06
Version: 1.5
Status: Unpatched. No reply from developer(s)
Risk level: low - SQL-inj and Auth Bypass in 2200net Calendar system
2006.02.05
Version: 1.2
Status: Unpatched. No reply from developer(s)
Risk level: medium - Authentication Bypass in phpstatus
2006.02.04
Version: 1.0
Status: Patched
Risk level: medium - Multiple Vulnerabilities in phphd
2006.02.04
Version: 1.0
Status: Patched
Risk level: medium - Multiple Vulnerabilities in phpht Topsites
2006.02.04
Version: 1.3
Status: Patched
Risk level: medium - Multiple Vulnerabilities in phphg Guestbook
2006.02.04
Version: 1.2
Status: Patched
Risk level: medium - Arbitrary Shell Command Execution in MyQuiz
2006.02.03
Version: 1.01
Status: Patched
Risk level: high