Project ListAlerts from SecurityFocus Newsletter #325
PHP
- PHP cURL and GD Multiple Safe_Mode and Open_Basedir Restriction Bypass Vulnerabilities
Upgrade to PHP 4.4.1. For PHP 5, it is best to upgrade to PHP 5.1.0, but there are several compatibility issues to watch out for when doing so. - PHP Apache 2 Virtual() Safe_Mode and Open_Basedir Restriction Bypass Vulnerability
Upgrade to PHP 4.4.1. For PHP 5, it is best to upgrade to PHP 5.1.0, but there are several compatibility issues to watch out for when doing so.
APPLICATIONS USING PHP
- Help Center Live Module.PHP Local File Include Vulnerability
- XOOPS Multiple Input Validation Vulnerabilities
- Horde Unspecified Error Message Cross-Site Scripting Vulnerability
- Wizz Forum Multiple SQL Injection Vulnerabilities
- PHPsysInfo Multiple Input Validation Vulnerabilities
- Peel rubid Parameter SQL Injection Vulnerability
- Codegrrl Protection.PHP Unspecified Code Execution Vulnerability
- Cyphor Show.PHP SQL Injection Vulnerability
- PHPNuke Search Module SQL Injection Vulnerability
- MyBulletinBoard Multiple HTML Injection Vulnerabilities
- MyBulletinBoard Unspecified Denial Of Service Vulnerability
- Pearl Forums Index.PHP Multiple SQL Injection Vulnerabilities
- Pearl Forums Index.PHP Local File Include Vulnerability
- PHPWCMS Multiple Remote File Include Vulnerabilities
- PHPWCMS Multiple Cross-Site Scripting Vulnerabilities
- Pollvote File Include Vulnerability
- AlstraSoft Template Seller Pro Remote File Include Vulnerability
- AlstraSoft Template Seller Pro SQL Injection Vulnerability
- Ekinboard Profile.PHP Cross-Site Scripting Vulnerability
- Ekinboard Title Post HTML Injection Vulnerability
- Mambo Open Source Remote File Include Vulnerability
- Antharia OnContent // CMS Index.PHP SQL Injection Vulnerability
- PHPWebThings MSG Parameter SQL Injection Vulnerability
- Unclassified NewsBoard Forum.PHP SQL Injection Vulnerability
- Arki-DB Index.PHP SQL Injection Vulnerability
- Uresk Links Admin Index.PHP Authentication Bypass Vulnerability
- PHP Easy Download Edit.PHP Authentication Bypass Vulnerability
- Pmachine Pro Email This Entry Mail_autocheck.PHP Remote File Include Vulnerability
- Interspire ArticleLive NX Search Module SQL Injection Vulnerability
- Revize CMS Query_results.JSP SQL Injection Vulnerability
- LiteSpeed ConfMgr.php Cross-Site Scripting Vulnerability
- XMB Forum Member.PHP HTML Injection Vulnerability
- PHP-Fusion Options.php and Viewforum.php SQL Injection Vulnerabilities
- Exponent Content Management System Multiple Improper File Permission Vulnerabilities
- PHPMyFAQ Multiple Cross-Site Scripting Vulnerabilities
