eGroupWare Multiple Cross-Site Scripting and SQL Injection Vulnerabilities

Bugtraq ID: 13212
Class: Input Validation Error
CVE:
Remote: Unknown
Local: Unknown
Published: Apr 18 2005 12:00AM
Updated: Apr 18 2005 12:00AM
Credit: Discovery credited to James from GulfTech Security Research.
Vulnerable: eGroupWare eGroupWare 1.0.6
eGroupWare eGroupWare 1.0.3
eGroupWare eGroupWare 1.0.1
eGroupWare eGroupWare 1.0
Not Vulnerable: eGroupWare eGroupWare 1.0 .0.007
+ Debian Linux 3.1 sparc
+ Debian Linux 3.1 s/390
+ Debian Linux 3.1 ppc
+ Debian Linux 3.1 mipsel
+ Debian Linux 3.1 mips
+ Debian Linux 3.1 m68k
+ Debian Linux 3.1 ia-64
+ Debian Linux 3.1 ia-32
+ Debian Linux 3.1 hppa
+ Debian Linux 3.1 arm
+ Debian Linux 3.1 amd64
+ Debian Linux 3.1 alpha
+ Debian Linux 3.1
+ Gentoo Linux


 

Privacy Statement
Copyright 2010, SecurityFocus