NYCPHP Meetup

[Daniel Convissor]

These summaries are available online
RSS:  http://phpsec.org/projects/vulnerabilities/securityfocus.xml
HTML: http://phpsec.org/projects/vulnerabilities/securityfocus.html

Alerts from SecurityFocus Newsletter #365

APPLICATIONS USING PHP
----------------------
MiniBill Config[Plugin_Dir] Parameter Multiple Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/19568

Joomla Z00m Media Gallery Component mosConfig_absolute_path Remote File Include Vulnerability
http://www.securityfocus.com/bid/19601

Sonium Enterprise Addressbook Multiple Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/19597

 Coppermine Gallery Component for Mambo cpg.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/19589

MamboWiki Component MamboLogin.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/19594

Joomla Poll Component Multiple User Session Validation Vulnerability
http://www.securityfocus.com/bid/19592

Joomla Kochsuite Component mosConfig_absolute_path Remote File Include Vulnerability
http://www.securityfocus.com/bid/19590

Mambo A6MamboCredits Component Remote File Include Vulnerability
http://www.securityfocus.com/bid/19581

Blog:CMS Dir_Plugins Parameter Multiple Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/19577

Mambo Jim Component Install.Jim.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/19575

MambelFish Mambo Component Mambelfish.Class.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/19574

Powergap Multiple Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/19565

CliServ Web Community Multiple Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/19737

Invisionix Roaming System Remote Pageheaderdefault.Inc.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/19567

ModuleBased CMS Multiple Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/19754

PHPECard Functions.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/19752

PhpGroupWare Calendar Class.Holidaycalc.Inc.PHP Local File Include Vulnerability
http://www.securityfocus.com/bid/19751

Mod_PHPAlbum Sommaire_Admin.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/19750

CJ Tag Board User-Agent PHP Code Injection Vulnerability
http://www.securityfocus.com/bid/19748

PMWiki Table Markups HTML Injection Vulnerability
http://www.securityfocus.com/bid/19747

HLstats Hlstats.PHP Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/19745

Jetbox CMS Search_function.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/19722
This issue is undergoing further investigation to determine the
validity of the vulnerability.

ExBB Italia UserStop.PHP Remote File Include Vulnerability
http://www.securityfocus.com/bid/19753

WTCom Web Torrent SQL Injection Vulnerability
http://www.securityfocus.com/bid/19569


RELATED STUFF
-------------
ImageMagick XCF Image File Remote Unspecified Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/19697

ImageMagick Sun Bitmap Image File Remote Unspecified Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/19699