NYCPHP Meetup

NYPHP.org

[nycphp-talk] PHP in SecurityFocus #342

Daniel Convissor danielc at analysisandsolutions.com
Sun Mar 26 19:27:31 EST 2006 

These summaries are available online
RSS:  http://phpsec.org/projects/vulnerabilities/securityfocus.xml
HTML: http://phpsec.org/projects/vulnerabilities/securityfocus.html

Alerts from SecurityFocus Newsletter #342

APPLICATIONS USING PHP
----------------------
PHPMyAdmin Set_Theme Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/17142

Inprotect Zones.PHP Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/17141

Oxynews Index.PHP SQL Injection Vulnerability
http://www.securityfocus.com/bid/17132

SPIP Research Module Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/17130

gCards Multiple Input Validation Vulnerabilities
http://www.securityfocus.com/bid/17165

SoftBB Reg.PHP SQL Injection Vulnerability
http://www.securityfocus.com/bid/17160

Maian Weblog Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/17159

Streber Unspecified HTML Injection Vulnerability
http://www.securityfocus.com/bid/17157

CutePHP CuteNews Function.PHP Local File Include Vulnerability
http://www.securityfocus.com/bid/17152

Noah's Classifieds Index.PHP Multiple Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/17151

Light Weight Calendar Cal.PHP Remote Command Execution Vulnerability
http://www.securityfocus.com/bid/17059

Skull-Splitter PHP Guestbook HTML Injection Vulnerability
http://www.securityfocus.com/bid/17136

PHPWebSite Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/17150

MusicBox Multiple Input Validation Vulnerabilities
http://www.securityfocus.com/bid/17149

Woltlab Burning Board Class_DB_MySQL.PHP Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/17147

ExtCalendar Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/17146

Invision Power Board Multiple Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/17144


RELATED STUFF
-------------
cURL / libcURL TFTP URL Parser Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/17154
Upgrade to version 7.15.3.

More information about the talk mailing list