NYCPHP Meetup

[Daniel Convissor]

These summaries are available online
RSS:  http://phpsec.org/projects/vulnerabilities/securityfocus.xml
HTML: http://phpsec.org/projects/vulnerabilities/securityfocus.html

Alerts from SecurityFocus Newsletter #364

APPLICATIONS USING PHP
----------------------
OScommerce Shopping_cart.PHP SQL Injection Vulnerability
http://www.securityfocus.com/bid/19644

Mambo EstateAgent Component mosConfig_absolute_path Remote File Include Vulnerability
http://www.securityfocus.com/bid/19625

Mambo Display MOSBot Manager Component mosConfig_absolute_path Remote File Include Vulnerability
http://www.securityfocus.com/bid/19621

Mambo BigAPE-Backup Component Remote File Include Vulnerability
http://www.securityfocus.com/bid/19616

Mambo CatalogShop Component mosConfig_absolute_path Remote File Include Vulnerability
http://www.securityfocus.com/bid/19604

Mambo AkoComment Module mosConfig_absolute_path Remote File Include Vulnerability
http://www.securityfocus.com/bid/19602

Mambo CropImage Component mosConfig_absolute_path Remote File Include Vulnerability
http://www.securityfocus.com/bid/19605

Fantastic Scripts Fantastic News Remote File Include Vulnerability
http://www.securityfocus.com/bid/19613

Modernbill Config.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/19335

DieselScripts Diesel Paid Mail Getad.PHP Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/19646

DieselScripts DieselPay Index.PHP Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/19623

DieselScript Smart Traffic Index.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/19630

DieselScripts Job Site Forgot.PHP Multiple Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/19622

Plume CMS Multiple Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/19629

ToendaCMS TCMS_Administer Parameter Remote File Include Vulnerability
http://www.securityfocus.com/bid/19626

PHPCodeGenie Core.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/19618

NES Game and NES System Multiple Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/19611

Tutti Nova Multiple Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/19612

Shadows Rising RPG Multiple Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/19608

XennoBB Icon_Topic SQL Injection Vulnerability
http://www.securityfocus.com/bid/19606

RedBlog Index.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/19658

Doika Guestbook GBook.PHP HTML Injection Vulnerability
http://www.securityfocus.com/bid/19656

Empire CMS Checklevel.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/19655

Business Management Systems Dolphin Remote File Include Vulnerability
http://www.securityfocus.com/bid/19648

PHProjekt Content Management Module Multiple Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/19628

Multiple Docebo Products Multiple Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/18109

SquirrelMail Compose.PHP Multiple Information Disclosure and Data Modification Vulnerabilities
http://www.securityfocus.com/bid/19486

Headline Portal Engine HPEInc Parameter Multiple Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/19663

TikiWiki Highlight Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/19654

CityForFree Indexcity List.PHP SQL Injection Vulnerability
http://www.securityfocus.com/bid/19653

CityForFree Indexcity Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/19652

Woltlab Burning Board Attachment.php HTML Injection Vulnerability
http://www.securityfocus.com/bid/19639

CloudNine Internet Solutions Links Manager Multiple Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/19650

CloudNine Internet Solutions Links Manager SQL Injection Vulnerability
http://www.securityfocus.com/bid/19649

Eichhorn Portal Multiple Input Validation Vulnerabilities
http://www.securityfocus.com/bid/19627

SportsPHool Remote File Include Vulnerability
http://www.securityfocus.com/bid/19610