Title:
==
Log Analyzer 3.6.0 - Cross Site Scripting Vulnerability
Date:
=
2012-12-20
References:
===
http://www.vulnerability-lab.com/get_content.php?id=792
Vendor:
Title:
==
SonicWall Email Security 7.4.1.x - Persistent Web Vulnerability
Date:
=
2012-12-21
References:
===
http://www.vulnerability-lab.com/get_content.php?id=768
VL-ID:
=
768
Common Vulnerability Scoring System:
4.1
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- -
Debian Security Advisory DSA-2591-1 secur...@debian.org
http://www.debian.org/security/Moritz Muehlenhoff
December 27, 2012
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- -
Debian Security Advisory DSA-2592-1 secur...@debian.org
http://www.debian.org/security/Moritz Muehlenhoff
December 28, 2012
1. OVERVIEW
CubeCart 5.0.7 and lower versions are vulnerable to Insecure Backup
File Handling which leads to the disclosure of the application
configuration file.
2. BACKGROUND
CubeCart is an out of the box ecommerce shopping cart software
solution which has been written to run on servers that