![]() |
|
Date: Thu, 15 Mar 2012 15:18:49 -0400 From: Mark Stanislav <mark.stanislav@...il.com> To: oss-security@...ts.openwall.com Subject: CVE Requests Howdy, I was looking to receive CVEs for the following... 1) phpMoneyBooks (http://phpmoneybooks.com/) has an unauthenticated local file inclusion (LFI) vulnerability * Notified, Response Received, and Patch Released 2) phpGradeBook (http://phpgradebook.com/) has unauthenticated SQL Database Exportation * Notified, Response Received, and Patch Released 3) phpPaleo (http://sourceforge.net/projects/phppaleo/) has an unauthenticated local file inclusion (LFI) vulnerability * Notified, Response Received, and Patch Released 4) hbportal (http://sourceforge.net/projects/hbportal/) has a POST-based SQL injection vulnerability * Notified 5) e-ticketing (http://sourceforge.net/projects/e-ticketing/) has a POST-based SQL injection vulnerability * Notified & Response Received Thanks! -Mark
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.