[nycphp-talk] PHP in SecurityFocus #348
Daniel Convissor
danielc at analysisandsolutions.com
Sat May 6 14:51:41 EDT 2006
These summaries are available online
RSS: http://phpsec.org/projects/vulnerabilities/securityfocus.xml
HTML: http://phpsec.org/projects/vulnerabilities/securityfocus.html
Alerts from SecurityFocus Newsletter #348
Make sure to check out the bottom item covering some MySQL bugs.
APPLICATIONS USING PHP
----------------------
Artmedic Event Index.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/17736
Network Administration Visualized Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/17734
CoolMenus Index.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/17738
Free-PHP.net Simple Poll Authentication Bypass Vulnerability
http://www.securityfocus.com/bid/17771
Ruperts News Script Login.PHP SQL Injection Vulnerability
http://www.securityfocus.com/bid/17758
DeltaScripts PHP Pro Publish Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/17762
Limbo CMS SQL.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/17760
PHP Newsfeed Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/17757
DMCounter Kopf.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/17756
CmScout Multiple HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/17796
Pinnacle Cart Index.PHP Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/17794
Invision Gallery Post.PHP SQL Injection Vulnerability
http://www.securityfocus.com/bid/17793
Virtual Hosting Control System Server_day_stats.PHP Multiple Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/17790
FileProtection Express Authentication Bypass Vulnerability
http://www.securityfocus.com/bid/17786
GeoBlog Viewcat.PHP Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/17784
SF-Users Username HTML Injection Vulnerability
http://www.securityfocus.com/bid/17783
SBlog Search.PHP SQL Injection Vulnerability
http://www.securityfocus.com/bid/17782
XDT Pro Stats.PHP Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/17781
Zenphoto Multiple Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/17779
JSBoard Login.PHP Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/17778
X7 Chat Index.PHP Local File Include Vulnerability
http://www.securityfocus.com/bid/17777
JMK Picture Gallery Admin_Gallery.PHP3 Authentication Bypass Vulnerability
http://www.securityfocus.com/bid/17755
PlanetGallery Gallery_admin.PHP Authentication Bypass Vulnerability
http://www.securityfocus.com/bid/17753
W-Agora BBCode Script Injection Vulnerability
http://www.securityfocus.com/bid/17751
TextFileBB Multiple Tag Script Injection Vulnerabilities
http://www.securityfocus.com/bid/17750
PHPNuke Downloads Module SQL Injection Vulnerability
http://www.securityfocus.com/bid/17749
4Images Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/17748
I-RATER Platinum Config_settings.TPL.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/17731
Thyme Search Page HTML Injection Vulnerability
http://www.securityfocus.com/bid/17746
Advanced GuestBook Addentry.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/17745
Blog Mod Weblog_posting.PHP SQL Injection Vulnerability
http://www.securityfocus.com/bid/17744
OpenPHPnuke Remote File Include Vulnerability
http://www.securityfocus.com/bid/17772
SunShop Shopping Cart Multiple Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/17770
OrbitHYIP Multiple Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/17766
MaxTrade Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/17765
phpBB Knowledge Base Mod KB_constants.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/17763
AZNEWS News.PHP SQL Injection Vulnerability
http://www.securityfocus.com/bid/17761
PostNuke Multiple Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/17743
RELATED STUFF
-------------
MySQL Remote Information Disclosure and Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/17780
Upgrade to 5.0.21, 4.0.27, 4.1.19 or 5.1.10.
More information about the talk
mailing list