PHPGroupWare Multiple Module SQL Injection Vulnerabilities

Solution:
The vendor has released version 0.9.14.007 of the software to address this and other issues. Users are also advised to download a fixed version of the RC1 release from the vendor.

Debian has released an advisory DSA-419-1 to address this issue. Please see the referenced advisory for more information.


PHPGroupWare PHPGroupWare 0.9.14 .003

PHPGroupWare PHPGroupWare 0.9.14 .006

PHPGroupWare PHPGroupWare 0.9.14 .005


 

Privacy Statement
Copyright 2010, SecurityFocus