AContent Multiple Remote Security Vulnerabilities

AContent is prone to following multiple remote security vulnerabilities:

1. Multiple SQL-injection vulnerabilities
2. Multiple authentication-bypass vulnerabilities
3. Multiple cross-site-scripting vulnerabilities

A successful exploit of these issues may allow an attacker to gain unauthorized access to the affected application, compromise the application, access or modify data, exploit vulnerabilities in the underlying database, execute arbitrary script code within the context of the browser, and steal cookie-based authentication credentials.

AContent 1.2 and prior versions are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus