HNS MAIN FEED
Saturday, 03:23 EST
- Zero-day vulnerabilities in Firefox extensions discovered
- Three charged with Comcast.net hijacking
- Cloud computing security benefits, risks and recommendations
- Poisoned Google search results
- World’s first wireless USB external hard drive
- A look at Securitybyte & OWASP AppSec Asia Conference 2009
- Biggest threats to federal systems and critical infrastructure
- Are 64-bit Windows inherently safer?
- NSA on cyber attacks and Microsoft collaboration
- New books: ModSecurity, Snow Leopard, social Web applications
- Vulnerability in IBM SolidDB memory caching software
- Two arrested for Zbot Trojan
Vivvo CMS "files.php" Directory Traversal
05 November 2009
Vivvo CMS is a web-based content manager implemented in PHP. The application is exposed to a directory traversal issue because it fails to sufficiently sanitize user-supplied input to the "file" parameter of the "files.php" script. Vivvo CMS version 4.1.5.1 is affected by this issue.
Ref: http://www.waraxe.us/advisory-75.html
09.44.94 - CVE: Not Available
Platform: Web Application
Ref: http://www.waraxe.us/advisory-75.html
09.44.94 - CVE: Not Available
Platform: Web Application