eVuln Security Advisories
We are looking for new vulnerabilities in open source web applications to keep up to date and improve our skills in website security. The result of this work is displayed in the eVuln Security Advisories list. Currently our own advisories list has 175 security advisories including 209 CVE entries.
The list of security advisories published by eVuln.
- SQL injections in FreeTicket
2010.11.14
Version: 1.0.0
Status: Unpatched. Mrcgiguy notified. No reply from developer(s)
Risk level: medium - email XSS in SimpLISTic
2010.11.13
Version: 2.0
Status: Unpatched. Mrcgiguy notified. No reply from developer(s)
Risk level: low - Multiple XSS in MCG GuestBook
2010.11.12
Version: 1.0
Status: Unpatched. Mrcgiguy notified. No reply from developer(s)
Risk level: low - sitename XSS in Hot Links Lite
2010.11.11
Version: 1.0
Status: Unpatched. Mrcgiguy notified. No reply from developer(s)
Risk level: low - url XSS in Hot Links Lite
2010.11.11
Version: 1.0
Status: Unpatched. Mrcgiguy notified. No reply from developer(s)
Risk level: low - report.cgi SQL inj in Hot Links SQL
2010.11.10
Version: 3.2.0
Status: Unpatched. Mrcgiguy notified. No reply from developer(s)
Risk level: medium - Cookie Auth Bypass in Hot Links SQL
2010.11.09
Version: 3.2.0
Status: Unpatched. Mrcgiguy notified. No reply from developer(s)
Risk level: high - URL and Title XSS in AxsLinks
2010.11.08
Version: 0.3
Status: Unpatched. AXScripts notified. No reply from developer(s)
Risk level: medium - Multiple Vulnerabilities in NX5Linkx
2006.08.26
Version: 1.0
Status: Unpatched. No reply from developer(s)
Risk level: high - XSS Vulnerability in Tag Board
2006.08.21
Version: 3.0
Status: Unpatched. No reply from developer(s)
Risk level: low