eVuln Security Advisories
We are looking for new vulnerabilities in open source web applications to keep up to date and improve our skills in website security. The result of this work is displayed in the eVuln Security Advisories list. Currently our own advisories list has 175 security advisories including 209 CVE entries.
The list of security advisories published by eVuln.
- SQL Injection Vulnerability in AZNEWS
2006.04.29
Version: 1.0
Status: Unpatched. No reply from developer(s)
Risk level: medium - SQL Injection and Multiple XSS in warforge.NEWS
2006.04.14
Version: 1.0
Status: Unpatched. No reply from developer(s)
Risk level: medium - SQL Injection Vulnerability in RateIt
2006.04.14
Version: 2.2
Status: Unpatched. No reply from developer(s)
Risk level: medium - SQL Injection and XSS Vulnerabilities in MWNewsletter
2006.04.06
Version: 1.0.0b
Status: Unpatched. No reply from developer(s)
Risk level: medium - XSS Vulnerability in MWGuest
2006.04.06
Version: 2.1.0
Status: Unpatched. No reply from developer(s)
Risk level: low - XSS and PHP Code Insertion in N.T.
2006.04.05
Version: 1.1.0
Status: Unpatched. No reply from developer(s)
Risk level: high - Authentication Bypass and SQL Injection in MD News
2006.04.05
Version: 1
Status: Unpatched. No reply from developer(s)
Risk level: medium - SQL Injection Vulnerability in wpBlog
2006.04.04
Version: 0.4
Status: Unpatched. No reply from developer(s)
Risk level: medium - XSS and Multiple SQL Injection in CzarNews
2006.04.04
Version: 1.14
Status: Unpatched. Vendor notyfied.
Risk level: medium - Multiple XSS and SQL Injection in aWebBB
2006.04.01
Version: 1.2
Status: Unpatched. Vendor notyfied.
Risk level: medium