Recent Curesec Publications

Supercali Event Calendar 1.0.8: CSRF
2015 Oct 07

Supercali Event Calendar 1.0.8: CSRF

There is no CSRF protection in Supercali Event Calendar 1.0.8.  

SQLiteManager 1.2.4: Multiple XSS
2015 Oct 07

SQLiteManager 1.2.4: Multiple XSS

There are multiple XSS vulnerabilities in SQLiteManager 1.2.4. This issue has not been fixed.   

OpenCart 2.0.3.1: CSRF
2015 Oct 07

OpenCart 2.0.3.1: CSRF

OpenCart 2.0.3.1 does not have CSRF protection for customers.  

MyWebSQL 3.6: CSRF
2015 Oct 07

MyWebSQL 3.6: CSRF

MyWebSQL 3.6 does not have CSRF protection.  

MiniBB 3.1.1: XSS
2015 Oct 07

MiniBB 3.1.1: XSS

There is an XSS vulnerability in MiniBB 3.1.1.  

Chyrp CMS 2.5.2: XSS
2015 Oct 07

Chyrp CMS 2.5.2: XSS

There is an XSS vulnerability in Chyrp CMS 2.5.2. This issue has not been fixed.   

SQL Buddy 1.3.3: XSS
2015 Oct 07

SQL Buddy 1.3.3: XSS

There is an XSS vulnerability in SQL Buddy 1.3.3. This issue has not been fixed.   

SQL Buddy 1.3.3: CSRF
2015 Oct 07

SQL Buddy 1.3.3: CSRF

The CSRF protection in SQL Buddy 1.3.3. does not work properly. This issue has not been fixed.   

Installing Pulledpork for Snort
2015 Oct 07

Installing Pulledpork for Snort

In this article we will download, configure and install Pulledpork and also create a cronjob for automatic rule update while you bother with more important things of your life.  

Pligg CMS 2.0.2: Multiple SQL Injections
2015 Oct 07

Pligg CMS 2.0.2: Multiple SQL Injections

There is a Code Execution vulnerability in the admin area of Pligg CMS 2.0.2. It can be exploited via CSRF. This issue has not been fixed.