NYCPHP Meetup

NYPHP.org

[nycphp-talk] PHP in SecurityFocus #363

Daniel Convissor danielc at analysisandsolutions.com
Sun Sep 24 05:54:27 EDT 2006 

These summaries are available online
RSS:  http://phpsec.org/projects/vulnerabilities/securityfocus.xml
HTML: http://phpsec.org/projects/vulnerabilities/securityfocus.html

Alerts from SecurityFocus Newsletter #363

APPLICATIONS USING PHP
----------------------
Joomla Webring Component Admin.Webring.Docs.PHP SQL Injection Vulnerability
http://www.securityfocus.com/bid/19511

PHP-Nuke AutoHTML Module Local File Include Vulnerability
http://www.securityfocus.com/bid/19525

Horde Products Search.PHP Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/19544

Mambo Email Publisher Help.MMP.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/19502

Mensajeitor HTTP CLIENT IP HTML Injection Vulnerability
http://www.securityfocus.com/bid/19539

WP-DB Backup For Wordpress Edit.PHP Directory Traversal Vulnerability
http://www.securityfocus.com/bid/19504

Mambo Peoplebook Component Param.PeopleBook.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/19505

Zen Cart Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/19542

ProjectButler RootDIR Parameter Multiple Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/19503

Extreme Media Board MemCP.PHP Local File Include Vulnerability
http://www.securityfocus.com/bid/19501

YaBBSE Index.PHP Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/19460

WikiWebWeaver Index.PHP Arbitrary File Upload Vulnerability
http://www.securityfocus.com/bid/19537

Lizge Index.PHP Multiple Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/19533

PHProjekt Multiple Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/19541

WEBInsta Mailing List Manager InitDB.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/19526

phPay Nu_mail.inc.PHP Open Email Relay Vulnerability
http://www.securityfocus.com/bid/19517

VWar Multiple Input Validation Vulnerabilities
http://www.securityfocus.com/bid/19327

Discloser Multiple Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/19532


RELATED STUFF
-------------
MIT Kerberos 5 Multiple Local Privilege Escalation Vulnerabilities
http://www.securityfocus.com/bid/19427
Upgrade to version 1.5.1 or 1.4.4. Complete coverage is in MIT's
Security Advisory MITKRB5-SA-2006-001.

Mozilla Firefox XML Handler Race Condition Memory Corruption Vulnerability
http://www.securityfocus.com/bid/19534

Mozilla Firefox JavaScript Handler Race Condition Memory Corruption Vulnerability
http://www.securityfocus.com/bid/19488

ImageMagick SGI Image File Remote Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/19507

More information about the talk mailing list