Project ListAlerts from SecurityFocus Newsletter #324
PHP
- PHP Group Exif Module Infinite Recursion Denial Of Service Vulnerability
This is a relatively minor issue. It is only a denial of service and only applies to users parsing EXIF data in corrupted JPEG images.
APPLICATIONS USING PHP
- Invision Power Board Multiple Cross-Site Scripting Vulnerabilities
- Invision Power Board Multiple HTML Injection Vulnerabilities
- PHPFM Arbitrary File Upload Vulnerability
- Debian Horde Default Administrator Password Vulnerability
- XMB U2U.PHP Cross-Site Scripting Vulnerability
- toendaCMS Admin.PHP Directory Traversal Vulnerability
- toendaCMS Remote File Upload Vulnerability
- PHPList Multiple Input Validation Vulnerabilities
- PHPKit Multiple Input Validation Vulnerabilities
- ATutor Registration.PHP SQL Injection Vulnerability
- YaBB Image Upload HTML Injection Vulnerability
- TikiWiki Tiki-view_forum_thread.PHP Cross-Site Scripting Vulnerability
- TikiWiki Tiki-User_Preferences.PHP Directory Traversal Vulnerability
- TikiWiki Tiki-Editpage.PHP Directory Traversal Vulnerability
- Moodle Multiple SQL Injection Vulnerabilities
- phpAdsNew Lib-sessions.inc.PHP SQL Injection Vulnerability
- OcoMon Multiple Unspecified SQL Injection Vulnerabilities
- Exponent CMS Multiple SQL Injection Vulnerabilities
- PHPSysInfo Multiple Input Validation Vulnerabilities
- PHPWebThings Download.PHP File Parameter SQL Injection Vulnerability
- ActiveCampaign 1-2-All Broadcast Email Admin Control Panel Username SQL Injection Vulnerability
