Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-1063-1
HistoryMay 08, 2006 - 12:00 a.m.

phpgroupware - missing input sanitising

2006-05-0800:00:00
Google
osv.dev
9

EPSS

0.016

Percentile

87.6%

JSON

It was discovered that the Avatar upload feature of FUD Forum, a component
of the web based groupware system phpgroupware, does not sufficiently
validate uploaded files, which might lead to the execution of injected web
script code.

For the old stable distribution (woody) this problem has been fixed in
version 0.9.14-0.RC3.2.woody6.

For the stable distribution (sarge) this problem has been fixed in
version 0.9.16.005-3.sarge5.

For the unstable distribution (sid) this problem has been fixed in
version 0.9.16.009-1.

We recommend that you upgrade your phpgroupware packages.

Related

debian 1
nessus 2
cve 1
ubuntucve 1
cvelist 1
openvas 4
nvd 1
debian
debian
[SECURITY] [DSA 1063-1] New phpgroupware packages fix execution of arbitrary web script code
2006-05-19 22:07:02
nessus
nessus
Debian DSA-1063-1 : phpgroupware - missing input sanitising
2006-10-14 00:00:00
FUDforum < 2.7.1 Avatar Upload Extension Validation Weakness Arbitrary Code Execution
2005-08-29 00:00:00
cve
cve
CVE-2005-2781
2005-09-02 23:03:00
ubuntucve
ubuntucve
CVE-2005-2781
2005-09-02 00:00:00
cvelist
cvelist
CVE-2005-2781
2005-09-02 04:00:00
openvas
openvas
Debian Security Advisory DSA 1063-1 (phpgroupware)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-1063-1)
2008-01-17 00:00:00
HP-UX Update for Mozilla remote HPSBUX01133
2009-05-05 00:00:00
nvd
nvd
CVE-2005-2781
2005-09-02 23:03:00

EPSS

0.016

Percentile

87.6%

JSON
Related for OSV:DSA-1063-1
debian1nessus2cve1ubuntucve1cvelist1openvas4nvd1