Security http://security.hostservicenet.com Tutto sulla sicurezza... Fri, 30 Mar 2012 14:21:26 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 Joomla Core – Privilege Escalation http://security.hostservicenet.com/2012/03/30/joomla-core-privilege-escalation/ http://security.hostservicenet.com/2012/03/30/joomla-core-privilege-escalation/#comments Fri, 30 Mar 2012 14:17:24 +0000 Staff http://security.hostservicenet.com/?p=370 Tipo Exploit: Privilege Escalation
Livello di criticità:
Versioni affette: 2.5.2, 2.5.1, 2.5.0 e tutte le precedenti 1.7.x e 1.6.x versioni.
Descrizione: un errore di programmazione permette escalation dei privilegi.
Soluzione: aggiornare alla versione 2.5.3 o superiore.

]]> http://security.hostservicenet.com/2012/03/30/joomla-core-privilege-escalation/feed/ 0 Joomla Core – Password Change http://security.hostservicenet.com/2012/03/30/joomla-core-password-change-2/ http://security.hostservicenet.com/2012/03/30/joomla-core-password-change-2/#comments Fri, 30 Mar 2012 14:11:55 +0000 Staff http://security.hostservicenet.com/?p=368 Tipo Exploit: Password Change
Livello di criticità:
Versioni affette: 2.5.2, 2.5.1, 2.5.0 e tutte le precedenti 1.7.x e 1.6.x versioni.
Descrizione: casualità insufficiente porta alla vulnerabilità tramite password reset.
Soluzione: aggiornare alla versione 2.5.3 o superiore.

]]> http://security.hostservicenet.com/2012/03/30/joomla-core-password-change-2/feed/ 0 ModX 2.2.0 – Vulnerabilità multiple http://security.hostservicenet.com/2012/03/30/modx-2-2-0-vulnerabilita-multiple/ http://security.hostservicenet.com/2012/03/30/modx-2-2-0-vulnerabilita-multiple/#comments Fri, 30 Mar 2012 09:49:13 +0000 Staff http://security.hostservicenet.com/?p=366 Tipo Exploit: LFI + Full Path Disclosure (divulgazione del percorso completo)
Livello di criticità:

]]> http://security.hostservicenet.com/2012/03/30/modx-2-2-0-vulnerabilita-multiple/feed/ 0 Joomla Component com_hdvideoshare Sql Injection http://security.hostservicenet.com/2012/02/19/joomla-component-com_hdvideoshare-sql-injection/ http://security.hostservicenet.com/2012/02/19/joomla-component-com_hdvideoshare-sql-injection/#comments Sun, 19 Feb 2012 07:01:36 +0000 Staff http://security.hostservicenet.com/?p=363 Tipo Exploit: SQL Injection
Livello di criticità:

]]> http://security.hostservicenet.com/2012/02/19/joomla-component-com_hdvideoshare-sql-injection/feed/ 0 Tube Ace (Adult PHP Tube Script) SQL Injection http://security.hostservicenet.com/2012/02/08/tube-ace-adult-php-tube-script-sql-injection/ http://security.hostservicenet.com/2012/02/08/tube-ace-adult-php-tube-script-sql-injection/#comments Wed, 08 Feb 2012 16:38:31 +0000 Staff http://security.hostservicenet.com/?p=361 Tipo Exploit: SQL Injection
Livello di criticità:

]]> http://security.hostservicenet.com/2012/02/08/tube-ace-adult-php-tube-script-sql-injection/feed/ 0 OSCommerce v3.0.2 – Cross site scripting persistente http://security.hostservicenet.com/2012/02/08/oscommerce-v3-0-2-cross-site-scripting-persistente/ http://security.hostservicenet.com/2012/02/08/oscommerce-v3-0-2-cross-site-scripting-persistente/#comments Wed, 08 Feb 2012 16:20:37 +0000 Staff http://security.hostservicenet.com/?p=359 Tipo Exploit: Cross site scripting persistente.
Livello di criticità:
Versioni affette: 3.0.2.

]]> http://security.hostservicenet.com/2012/02/08/oscommerce-v3-0-2-cross-site-scripting-persistente/feed/ 0 Mambo CMS 4.6.5 SQL Injection http://security.hostservicenet.com/2012/02/08/mambo-cms-4-6-5-sql-injection/ http://security.hostservicenet.com/2012/02/08/mambo-cms-4-6-5-sql-injection/#comments Wed, 08 Feb 2012 16:11:13 +0000 Staff http://security.hostservicenet.com/?p=357 Tipo Exploit: SQL Injection
Livello di criticità:
Versioni affette: 4.6.5 e tutte le precedenti versioni.
Soluzione: aggiornare all’ultima versione disponibile.

]]> http://security.hostservicenet.com/2012/02/08/mambo-cms-4-6-5-sql-injection/feed/ 0 Joomla Discussions Component (com_discussions) SQL Injection http://security.hostservicenet.com/2012/02/08/joomla-discussions-component-com_discussions-sql-injection/ http://security.hostservicenet.com/2012/02/08/joomla-discussions-component-com_discussions-sql-injection/#comments Wed, 08 Feb 2012 16:02:55 +0000 Staff http://security.hostservicenet.com/?p=355 Tipo Exploit: SQL Injection
Livello di criticità:

]]> http://security.hostservicenet.com/2012/02/08/joomla-discussions-component-com_discussions-sql-injection/feed/ 0 WordPress wp-autoyoutube plugin Blind SQL Injection http://security.hostservicenet.com/2012/02/08/wordpress-wp-autoyoutube-plugin-blind-sql-injection/ http://security.hostservicenet.com/2012/02/08/wordpress-wp-autoyoutube-plugin-blind-sql-injection/#comments Wed, 08 Feb 2012 15:49:26 +0000 Staff http://security.hostservicenet.com/?p=353 Tipo Exploit: Blind SQL Injection
Livello di criticità:

]]> http://security.hostservicenet.com/2012/02/08/wordpress-wp-autoyoutube-plugin-blind-sql-injection/feed/ 0 WordPress Easy Contact Form Lite plugin http://security.hostservicenet.com/2012/02/08/wordpress-easy-contact-form-lite-plugin/ http://security.hostservicenet.com/2012/02/08/wordpress-easy-contact-form-lite-plugin/#comments Wed, 08 Feb 2012 15:41:29 +0000 Staff http://security.hostservicenet.com/?p=351 Tipo Exploit: SQL Injection
Livello di criticità:
Versioni affette: 1.0.7 e tutte le precedenti versioni.

]]> http://security.hostservicenet.com/2012/02/08/wordpress-easy-contact-form-lite-plugin/feed/ 0