NYCPHP Meetup

NYPHP.org

[nycphp-talk] SecurityFocus Newsletter #298

Daniel Convissor danielc at analysisandsolutions.com
Wed May 4 14:19:02 EDT 2005 

SecurityFocus Newsletter #298

SecurityFocus Newsletter #298APPLICATIONS USING PHP
----------------------
Ariadne CMS Remote File Include Vulnerability
http://www.securityfocus.com/bid/13206

PHPBB Remote Mod.PHP SQL Injection Vulnerability
http://www.securityfocus.com/bid/13209

Datenbank Module For PHPBB Remote Mod.PHP Cross-Site Scripting 
Vulnerability
http://www.securityfocus.com/bid/13210

eGroupWare Multiple Cross-Site Scripting and SQL Injection V...
http://www.securityfocus.com/bid/13212

Coppermine Photo Gallery X-Forwarded-For Logging HTML Inject...
http://www.securityfocus.com/bid/13218

JAWS Glossary HTML Injection Vulnerability
http://www.securityfocus.com/bid/13254

CityPost PHP LNKX Message.PHP Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/13255

CityPost PHP Image Editor M1 URI Parameter Cross-Site Scripting 
Vulnerability
http://www.securityfocus.com/bid/13256

CityPost PHP Image Editor M2 URI Parameter Cross-Site Script...   
http://www.securityfocus.com/bid/13257

CityPost PHP Image Editor M3 URI Parameter Cross-Site Script...   
http://www.securityfocus.com/bid/13258

CityPost PHP Image Editor Imgsrc URI Parameter Cross-Site Sc...   
http://www.securityfocus.com/bid/13259

CityPost PHP Image Editor M4 URI Parameter Cross-Site Script...   
http://www.securityfocus.com/bid/13260

CityPost Simple PHP Upload Simple-upload-53.PHP Cross-Site S...   
http://www.securityfocus.com/bid/13261

AZ Bulletin Board Remote File Include Vulnerability
http://www.securityfocus.com/bid/13272

AZ Bulletin Board Attachment Parameter Remote Directory Trav...     
http://www.securityfocus.com/bid/13277

AZ Bulletin Board Directory Traversal Vulnerability
http://www.securityfocus.com/bid/13278

Netref Cat_for_gen.PHP Remote PHP Script Injection Vulnerability
http://www.securityfocus.com/bid/13275

PHP Labs proFile Dir URI Variable Cross-Site Scripting Vulne...       
http://www.securityfocus.com/bid/13276

PHP Labs proFile File URI Variable Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/13282

PHPBB-Auction Module Auction_Rating.PHP SQL Injection Vulnerability
http://www.securityfocus.com/bid/13283

PHPBB-Auction Module Auction_Offer.PHP SQL Injection Vulnerability
http://www.securityfocus.com/bid/13284

PHProjekt Chatroom Text Submission HTML Injection Vulnerability
http://www.securityfocus.com/bid/13286

Coppermine Photo Gallery Favs SQL Injection Vulnerability
http://www.securityfocus.com/bid/13287

Coppermine Photo Gallery ZipDownload.PHP SQL Injection Vulnerability
http://www.securityfocus.com/bid/13289

FlexPHPNews News.PHP SQL Injection Vulnerability
http://www.securityfocus.com/bid/13297

ProfitCode Software PayProCart Username Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/13299

ProfitCode Software PayProCart ChckOutAction Cross-Site Scripting 
Vulnerability
http://www.securityfocus.com/bid/13302

ProfitCode Software PayProCart Ckprvd Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/13303

ProfitCode Software PayProCart PageID Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/13304

ProfitCode Software PayProCart AdminShop HDoc Cross-Site Scripting 
Vulnerability
http://www.securityfocus.com/bid/13305

ProfitCode Software PayProCart AdminShop ModID Cross-Site Sc...
http://www.securityfocus.com/bid/13306

ProfitCode Software PayProCart AdminShop TaskID Cross-Site S...
http://www.securityfocus.com/bid/13307

ProfitCode Software PayProCart AdminShop ProMod Cross-Site S...
http://www.securityfocus.com/bid/13308

ProfitCode Software PayProCart AdminShop MMActionComm Cross-...
http://www.securityfocus.com/bid/13309

MediaWiki Unspecified HTML Tidy Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/13301


RELATED STUFF
-------------
Mozilla Suite And Firefox Search Plug-In Remote Script Code ...
http://www.securityfocus.com/bid/13211

Mozilla Firefox PLUGINSPAGE Remote Script Code Execution Vulnerability
http://www.securityfocus.com/bid/13228

Mozilla Suite And Firefox Blocked Pop-Up Window Remote Scrip...
http://www.securityfocus.com/bid/13229

Mozilla Suite And Firefox Global Scope Pollution Cross-Site ...
http://www.securityfocus.com/bid/13230

Mozilla Firefox Search Target Sidebar Panel Script Code Exec...
http://www.securityfocus.com/bid/13231

Mozilla Suite And Firefox XPInstall JavaScript Object Instan...
http://www.securityfocus.com/bid/13232

Mozilla Suite And Firefox Document Object Model Nodes Code E...
http://www.securityfocus.com/bid/13233

CVS Unspecified Buffer Overflow And Memory Access Vulnerability
http://www.securityfocus.com/bid/13217

-- 
 T H E   A N A L Y S I S   A N D   S O L U T I O N S   C O M P A N Y
            data intensive web and database programming
                http://www.AnalysisAndSolutions.com/
 4015 7th Ave #4, Brooklyn NY 11232  v: 718-854-0335 f: 718-854-0409

More information about the talk mailing list