NYCPHP Meetup

NYPHP.org

[nycphp-talk] stuff in SecurityFocus Newsletter #300

Daniel Convissor danielc at analysisandsolutions.com
Mon May 16 13:18:10 EDT 2005


SecurityFocus Newsletter #300

APPLICATIONS USING PHP
----------------------
JGS-Portal ID Variable SQL Injection Vulnerability
http://www.securityfocus.com/bid/ 13451

PHPMyAdmin Insecure SQL Install Script Permissions Vulnerability
http://www.securityfocus.com/bid/ 13452

CodeToSell ViArt Shop Enterprise Multiple Cross-Site Scripting 
Vulnerability
http://www.securityfocus.com/bid/ 13462

OSTicket Multiple Input Validation and Remote Code Injection...
http://www.securityfocus.com/bid/ 13478

SitePanel2 Multiple Input Validation Vulnerabilities
http://www.securityfocus.com/bid/ 13481

Invision Power Board Act Parameter Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/ 13483

Invision Power Board Topics.PHP Highlite Parameter Cross-Site Scripting 
Vulnerability
http://www.securityfocus.com/bid/ 13534

Invision Power Board Login.PHP SQL Injection Vulnerability
http://www.securityfocus.com/bid/ 13529

Invision Power Board Search.PHP Highlite Parameter Scripting Vulnerability
http://www.securityfocus.com/bid/ 13532

PHP Advanced Transfer Manager Arbitrary File Upload Vulnerability
http://www.securityfocus.com/bid/ 13542

Interspire ArticleLive Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/ 13493

FishNet FishCart Multiple Cross-Site Scripting and SQL Injection 
Vulnerability
http://www.securityfocus.com/bid/ 13499

MyBloggie Multiple Input Validation Vulnerabilities
http://www.securityfocus.com/bid/ 13507

MidiCart PHP Search_List.PHP SearchString Parameter SQL Injection 
Vulnerability
http://www.securityfocus.com/bid/ 13512

MidiCart PHP Item_List.PHP MainGroup Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/ 13513

MidiCart PHP Item_List.PHP SecondGroup Parameter SQL Injection 
Vulnerability
http://www.securityfocus.com/bid/ 13514

MidiCart PHP Item_Show.PHP Code_No Parameter SQL Injection V...
http://www.securityfocus.com/bid/ 13515

MidiCart PHP Search_List.PHP SearchString Parameter Scripting 
Vulnerability
http://www.securityfocus.com/bid/ 13516

MidiCart PHP Item_List.PHP SecondGroup Parameter Cross-Site ...
http://www.securityfocus.com/bid/ 13517

MidiCart PHP Item_List.PHP Maingroup Parameter Cross-Site Sc...
http://www.securityfocus.com/bid/ 13518

BirdBlog BB Code HTML Injection Vulnerability
http://www.securityfocus.com/bid/ 13520

CJ Ultra Plus OUT.PHP SQL Injection Vulnerability
http://www.securityfocus.com/bid/ 13533



RELATED STUFF
-------------
If you're using the Firefox or Mozilla web browsers, make sure you upgrade 
to the latest versions (FF = 1.0.4, Moz = 1.7.8).

-- 
 T H E   A N A L Y S I S   A N D   S O L U T I O N S   C O M P A N Y
            data intensive web and database programming
                http://www.AnalysisAndSolutions.com/
 4015 7th Ave #4, Brooklyn NY 11232  v: 718-854-0335 f: 718-854-0409



More information about the talk mailing list