NYCPHP Meetup

NYPHP.org

[nycphp-talk] SecurityFocus Newsletter #297

Daniel Convissor danielc at analysisandsolutions.com
Wed May 4 13:43:28 EDT 2005 

SecurityFocus Newsletter #297

PHP
---
PHP Group PHP Multiple Unspecified Vulnerabilities [in 4.3.11 and 5.0.3]
http://www.securityfocus.com/bid/13143

PHP Group Exif Module IFD Tag Integer Overflow Vulnerability
http://www.securityfocus.com/bid/13163

PHP Group Exif Module IFD Nesting Denial Of Service Vulnerability
http://www.securityfocus.com/bid/13164


APPLICATIONS USING PHP
----------------------
RadScripts RadBids Gold Multiple Vulnerabilities
http://www.securityfocus.com/bid/13080

Azerbaijan Development Group AzDGDatingPlatinum Multiple Vulnerability
http://www.securityfocus.com/bid/13082

File Upload Script PHPBB Module Arbitrary Script Upload Vulnerability
http://www.securityfocus.com/bid/13084

ModernGigabyte ModernBill News.PHP File Include Vulnerability
http://www.securityfocus.com/bid/13086

ModernGigabyte ModernBill C_CODE Parameter Cross-Site Scripting 
Vulnerability
http://www.securityfocus.com/bid/13087

ModernGigabyte ModernBill Aid Parameter Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/13089

TowerBlog User Credential Exposure Weakness
http://www.securityfocus.com/bid/13090

Zoom Media Gallery Index.PHP SQL Injection Vulnerability
http://www.securityfocus.com/bid/13094

Invision Power Board ST Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/13097

JPortal Banner.PHP SQL Injection Vulnerability
http://www.securityfocus.com/bid/13103

AEwebworks Dating Software AeDating Index.PHP Local File Inc...
http://www.securityfocus.com/bid/13108

AEwebworks Dating Software AeDating Sdating.PHP SQL Injectio...
http://www.securityfocus.com/bid/13111

AEwebworks Dating Software AeDating Control Panel Cross-Site...
http://www.securityfocus.com/bid/13113

XAMPP CDS.PHP Remote HTML Injection Vulnerability
http://www.securityfocus.com/bid/13126

XAMPP Phonebook.PHP Remote HTML Injection Vulnerability
http://www.securityfocus.com/bid/13127

XAMPP Insecure Default Password Disclosure Vulnerability
http://www.securityfocus.com/bid/13131

EGroupWare EMail Attachment Information Disclosure Vulnerability
http://www.securityfocus.com/bid/13137

Pinnacle Cart Index.PHP Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/13138

PHPBB2 Plus GroupCP.PHP Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/13149

PHPBB2 Plus Index.PHP Multiple Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/13150

PHPBB2 Plus Portal.PHP Multiple Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/13151

PHPBB2 Plus ViewForum.PHP Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/13152

PHPBB2 Plus ViewTopic.PHP Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/13153

PHPBB Photo Album Module Album_Search.PHP SQL Injection Vulnerability
http://www.securityfocus.com/bid/13155

PHPBB Photo Album Module Album_Cat.PHP Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/13157

PHPBB Photo Album Module Album_Comment.PHP Cross-Site Scripting 
Vulnerability
http://www.securityfocus.com/bid/13158

S9Y Serendipity Exit.PHP SQL injection Vulnerability
http://www.securityfocus.com/bid/13161

All4WWW-HomePageCreator Index.PHP Arbitrary Remote File Incl...
http://www.securityfocus.com/bid/13169

SPHPBlog Search.PHP Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/13170

-- 
 T H E   A N A L Y S I S   A N D   S O L U T I O N S   C O M P A N Y
            data intensive web and database programming
                http://www.AnalysisAndSolutions.com/
 4015 7th Ave #4, Brooklyn NY 11232  v: 718-854-0335 f: 718-854-0409

More information about the talk mailing list