eVuln Security Advisories
We are looking for new vulnerabilities in open source web applications to keep up to date and improve our skills in website security. The result of this work is displayed in the eVuln Security Advisories list. Currently our own advisories list has 175 security advisories including 209 CVE entries.
The list of security advisories published by eVuln.
- Multiple XSS and SQL Injection in aWebNews
2006.04.01
Version: 1.0
Status: Unpatched. Vendor notyfied.
Risk level: medium - Multiple XSS and SQL Injection in RedCMS
2006.03.30
Version: 0.1
Status: Unpatched. No reply from developer(s)
Risk level: medium - SQL Injection Vulnerability in qliteNews
2006.03.30
Version: 2005.07.01
Status: Unpatched. No reply from developer(s)
Risk level: medium - XSS and PHP Code Insertion Vulnerabilities in QLnews
2006.03.30
Version: 1.2
Status: Unpatched. No reply from developer(s)
Risk level: high - Multiple Vulnerabilities in VNews
2006.03.29
Version: 1.2
Status: Unpatched. No reply from developer(s)
Risk level: high - [V]Book Multiple Vulnerabilities
2006.03.29
Version: 2.0
Status: Unpatched. No reply from developer(s)
Risk level: high - Multiple SQL Injections in phpNewsManager
2006.03.29
Version: 1.48
Status: Unpatched. No reply from developer(s)
Risk level: medium - SQL Injection Vulnerability in Null news
2006.03.28
Version: 2005.07.27
Status: Unpatched. No reply from developer(s)
Risk level: medium - SQL Injection Vulnerability in vCounter
2006.03.28
Version: 1.0
Status: Unpatched. Vendor notyfied.
Risk level: low - SQL Injection Vulnerability in newsletter
2006.03.28
Version: 1.0
Status: Unpatched. Vendor notyfied.
Risk level: medium