[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Jupiter CMS 1.1.5 Multiple Vulnerabilities

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: Jupiter CMS 1.1.5 Multiple Vulnerabilities
From: gmdarkfig@xxxxxxxxx
Date: 14 Feb 2007 18:50:53 -0000

Little error for the file upload vulnerability.
Updated, see http://www.acid-root.new.fr/advisories/12070214.txt.
Sorry for the inconvenience :(.

"An attacker can access to this script, simply by sending a request
which not contains the "is_guest" and "is_user" variables."

Prev by Date: Apache Multiple Injection Vulnerabilities
Next by Date: Re: DotClear Full Path Disclosure Vulnerability
Previous by thread: Jupiter CMS 1.1.5 Multiple Vulnerabilities
Next by thread: WebTester 5.0.2 sql injection and XSS vulnerabilities
Index(es):
- Date
- Thread