Actualités
PHP et MySQL ne font l'objet d'aucune alerte de sécurité dans leurs versions courantes :
PHP 5.2.5 et 4.4.8; MySQL 5.0.51 (communauté) , 5.1.23-rc et 6.0.4.
Les mises à jour sont recommandées vers ces versions.
12 alertes de sécurité ont été émises cette semaine, concernant des applications suivantes :
Drupal, Gallery, Horde, Invision Power Board, Joomla, Mantis, PHP Nuke, Smarty, WordPress, Xoops, phpBB et phpMyAdmin
- Ubercart for Drupal Attribute Module Cross site scripting Vulnerability
http://www.frsirt.com/bulletins/13762 (1 visite)
Site : http://drupal.org/ (1 visite) - EasyGallery 'index.php' Multiple SQL Injection and Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/28233 (1 visite)
Site : http://gallery.sourceforge.net/ (1 visite) - Horde Products "theme" Parameter Handling Local File Inclusion Issue
http://www.frsirt.com/bulletins/13717 (1 visite)
Site : http://www.horde.org/ (1 visite) - Invision Power Board Nested BBCodes Script Insertion
http://www.secunia.com/advisories/29378/ class=qq title=Invision Power Board Nested BBCodes Script Insertion (1 visite)
Site : http://www.invisionboard.com/ (4 visites) - RETIRED: Joomla! and Mambo SOBI2 Component SQL Injection Vulnerability
http://www.securityfocus.com/bid/27617 (7 visites)
Site : http://www.securityfocus.com/archive/1/489044 (2 visites) - Mantis: Cross-Site Scripting
http://www.mantisbt.org/ (3 visites)
Site : http://www.secunia.com/advisories/29279/ (3 visites) - PHP-Nuke Kütüb-i Sitte Module "kid" SQL Injection
http://secunia.com/advisories/29241/ (2 visites)
Site : http://smarty.php.net/ (2 visites) - Smarty "regex_replace" Modifier Template Security Bypass
http://www.SecurityTracker.com/alerts/2008/Mar/1019564.html (4 visites)
Site : http://wordpress.org/ (2 visites) - WordPress Input Validation Holes in Invite Function Permit Cro...
http://www.securityfocus.com/bid/28220 (2 visites)
Site : http://www.xoops.org/ (1 visite) - MAXdev My eGallery Module For Xoops 'gid' Parameter SQL Injection Vulnerability
http://www.secunia.com/advisories/29339/ class=qq title=qFully Modded phpBB aquot;kaquot; SQL Injection Vulnerability (6 visites)
Site : http://www.phpbb.com/ (3 visites) - Fully Modded phpBB "k" SQL Injection Vulnerability
http://secunia.com/advisories/29200/ (4 visites)
Site : http://www.phpmyadmin.net/ (2 visites) - phpMyAdmin "$_REQUEST" SQL Injection Vulnerability
frsirt (7 visites)
Site : phpsecure (5 visites)
- secunia (2 visites)
- securityfocus (1 visite)
- securitytracker (2 visites)
| < Précédent | Suivant > |
|---|
Commentaires
Vous pouvez ajouter votre commentaire! |
Vous devez vous connecter pour commenter