CVE-2007-5694

Related Files

Debian Linux Security Advisory 1423-1

Posted Dec 8, 2007

Authored by Debian | Site debian.org

Debian Security Advisory 1423-1 - Several remote vulnerabilities have been discovered in sitebar, a web based bookmark manager written in PHP.

tags | advisory, remote, web, php, vulnerability

systems | linux, debian

advisories | CVE-2007-5491, CVE-2007-5492, CVE-2007-5693, CVE-2007-5694, CVE-2007-5695, CVE-2007-5692

SHA-256 | da194b681f8ebc0cd79e03be585700374cc2675c0f874e7cef7dfb5acdad3595

Download | Favorite | View

Gentoo Linux Security Advisory 200711-5

Posted Nov 7, 2007

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200711-05 - Tim Brown discovered these multiple issues: the translation module does not properly sanitize the value to the dir parameter; the translation module also does not sanitize the values of the edit and value parameters which it passes to eval() and include(); the log-in command does not validate the URL to redirect users to after logging in; SiteBar also contains several cross-site scripting vulnerabilities. Versions less than 3.3.9 are affected.

tags | advisory, vulnerability, xss

systems | linux, gentoo

advisories | CVE-2007-5491, CVE-2007-5492, CVE-2007-5692, CVE-2007-5693, CVE-2007-5694, CVE-2007-5695

SHA-256 | 36771fb0329b6926ba517c37cc21aa30da4b07b906f850422e0062503b31d17e

Download | Favorite | View