Alerts from SecurityFocus Newsletter #322

Summarized by Daniel Convissor

PHP

• PHP Apache 2 Local Denial of Service Vulnerability
  This SF report says the matter has been resolved in 4.4.1. But looking at the CVS log messages at http://cvs.php.net/php-src/sapi/apache2handler/sapi_apache2.c one can see that further important fixes for this SAPI were implemented on 18 Nov 2005 which have yet to be incorporated into an official release.

APPLICATIONS USING PHP

• phpMyAdmin Theme Variable Local File Inclusion Vulnerability
• phpBB Avatar Upload HTML Injection Vulnerability
• PHPNuke Multiple Modules SQL Injection Vulnerabilities
• PunBB Common.PHP Remote File Include Vulnerability
• Nuked Klan Multiple SQL Injection Vulnerabilities
• FlatNuke Index.PHP Multiple Remote File Include Vulnerabilities
• FlatNuke Index.PHP Cross-Site Scripting Vulnerability
• TriggerTG TClanPortal Index.PHP SQL Injection Vulnerability
• Platinum DBoardGear Multiple SQL Injection Vulnerabilities
• Platinum DBoardGear Theme Import SQL Injection Vulnerability
• Zomplog Detail.PHP HTML Injection Vulnerability
• DCP-Portal Multiple Input Validation Vulnerabilities
• SAPHP Lesson Multiple Input Validation Vulnerabilities
• PHP-Fusion Message Post HTML Injection Vulnerability
• PHP ICalendar Default_View Remote File Include Vulnerability
• XOOPS Multiple HTML Injection Vulnerabilities
• Basic Analysis And Security Engine Base_qry_main.PHP SQL Injection Vulnerability
• AR-Blog Comment HTML Injection Vulnerability
• AR-Blog Remote Authentication Bypass Vulnerability
• SparkleBlog Multiple HTML Injection Vulnerabilities
• MyBulletinBoard Usercp.PHP SQL Injection Vulnerability
• IPBProArcade GameID Parameter Remote SQL Injection Vulnerability
• Belchior Foundry VCard Remote File Include Vulnerability
• Flyspray Multiple Cross-Site Scripting Vulnerabilities
• Mantis Multiple Unspecified SQL Injection Vulnerabilities
• Mantis Bug_sponsorship_list_view_inc.PHP File Include Vulnerability
• Mantis Multiple Remote Vulnerabilities
• Woltlab Info-DB Info_db.PHP Multiple SQL Injection Vulnerabilities
• GCards News.PHP SQL Injection Vulnerability
• Search Enhanced Module for PHP-Nuke HTML Injection Vulnerability
• ATutor Multiple Input Validation Vulnerabilities
• PBLang Multiple Cross-Site Scripting Vulnerabilities
• PHPESP Multiple Unspecified Input Validation Vulnerabilities
• MG2 Authentication Bypass Vulnerability
• PHP Advanced Transfer Manager Remote Unauthorized Access Vulnerability
• Subdreamer Multiple Remote SQL Injection Vulnerabilities

RELATED STUFF

• Apache Mod_Auth_Shadow Authentication Bypass Vulnerability

ITEMS OF INTEREST FROM OTHER SOURCES

• PEAR HTML_Form Cross-Site Scripting and Remote Code Injection Vulnerabilities
  Release 1.3.0 of PEAR's HTML_Form package contains important security fixes.