Test ID:	1.3.6.1.4.1.25623.1.0.802076
Category:	Web application abuses
Title:	Dotclear Multiple Vulnerabilities
Summary:	Dotclear is prone to multiple vulnerabilities.
Description:	Summary: Dotclear is prone to multiple vulnerabilities. Vulnerability Insight: - Flaw in due to 'dcXmlRpc::setUser()' method in 'class.dc.xmlrpc.php' fails to verify passwords before using it. - Flaw is due to is due to the '/admin/categories.php' script not properly sanitizing user-supplied input to the 'categories_order' POST parameter. - Flaw is due to is due to 'filemanager::isFileExclude()' method does not properly verify or sanitize user-uploaded files. Vulnerability Impact: Successful exploitation will allow remote attackers to bypass authentication mechanisms, inject or manipulate SQL queries in the back-end database and attacker can to execute uploaded script with the privileges of the web server. Affected Software/OS: DotClear version before 2.6.3 Solution: Upgrade to version 2.6.3 or later. CVSS Score: 6.0 CVSS Vector: AV:N/AC:M/Au:S/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2014-3781 http://seclists.org/fulldisclosure/2014/May/107 http://karmainsecurity.com/KIS-2014-05 http://packetstormsecurity.com/files/126766/Dotclear-2.6.2-Authentication-Bypass.html http://secunia.com/advisories/58675 Common Vulnerability Exposure (CVE) ID: CVE-2014-3782 http://seclists.org/fulldisclosure/2014/May/108 http://seclists.org/fulldisclosure/2014/May/116 http://seclists.org/fulldisclosure/2014/May/122 http://karmainsecurity.com/KIS-2014-06 Common Vulnerability Exposure (CVE) ID: CVE-2014-3783 Bugtraq: 20140521 [KIS-2014-07] Dotclear <= 2.6.2 (categories.php) SQL Injection Vulnerability (Google Search) http://www.securityfocus.com/archive/1/532185/100/0/threaded http://seclists.org/fulldisclosure/2014/May/109 http://karmainsecurity.com/KIS-2014-07 http://packetstormsecurity.com/files/126768/Dotclear-2.6.2-SQL-Injection.html
Copyright	Copyright (C) 2014 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.