• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

DUware DUportal Multiple Vulnerabilities

Multiple vulnerabilities have been identified in the software that include file include, cross-site scripting, and unauthorized access via changing the user and administrative passwords.

These vulnerabilities have been reported to be present in DUWare DUportal 3.0, DUportal 3.0 SQL, DUportal Pro 3.2, and DUportal Pro 3.2 SQL.

These issues are currently undergoing further analysis. This cumulative BID will be separated into individual entries when analysis is complete.