Project ListAlerts from SecurityFocus Newsletter #379
APPLICATIONS USING PHP
- PHPMyAdmin Multiple HTTP Response Splitting Vulnerabilities
- SMF Image File HTML Injection Vulnerability
- JAB Guest Book HTML Injection Vulnerability
- Frech.CH Online-BookMarks Multiple Input Validation Vulnerabilities
- Mobile Multiple Scripts Multiple Cross-Site Scripting Vulnerabilities
- Inside Systems Mail Error.PHP Cross-Site Scripting Vulnerability
- Cerberus Helpdesk Spellwin.PHP Cross-Site Scripting Vulnerability
- Drupal CVS Management/Tracker Motivation Field Cross-Site Scripting Vulnerability
- iWare Professional Index.PHP SQL Injection Vulnerability
- @lex Guestbook Index.PHP Multiple Input Validation Vulnerabilities
- Abarcar Realty Portal Multiple SQL Injection Vulnerabilities
- Brim Multiple Remote File Include Vulnerabilities
- ABitWhizzy ABitWhizzy.PHP Directory Traversal Vulnerability
RELATED STUFF
- Apache Mod_Auth_Kerb Off-By-One Denial of Service Vulnerability
Upgrade to version 5.3. - GnuPG OpenPGP Packet Processing Function Pointer Overwrite Vulnerability
Upgrade to version 1.4.6. - GnuPG Make_Printable_String Remote Buffer Overflow Vulnerability
- GNU Tar GNUTYPE_NAMES Remote Directory Traversal Vulnerability
FreeBSD released a fix via SA-06:26. - Adobe Acrobat Multiple Vulnerabilities
Upgrade to Reader 8 or follow these instructions on patching version 7: http://www.adobe.com/support/security/bulletins/apsb06-20.html
