phpgroupware-users
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Phpgroupware-users] phpGroupWare 0.9.14.004 - Security and Bug Fix Rel


From: Dave Hall
Subject: [Phpgroupware-users] phpGroupWare 0.9.14.004 - Security and Bug Fix Release
Date: Fri, 04 Jul 2003 11:14:52 +1000

Hi All,

All users should install this version.  There have been several
vulnerabilities discovered in previous versions of phpGroupWare.  One is
a Cross Site Scripting exploit - see
http://www.security-corporation.com/articles-20030702-005.html.  The
other unreported issue relates the Virtual File System being in the
document root - as of this release the vfs root must be out of the webroot.

Due to these security issues no previous versions of phpGroupWare will
be officially supported by the phpGroupWare crew.

There are some general bug fixes also included in this release.

Please download it from one of our mirrors -
http://phpgroupware.org/mirrors/

Cheers

phpGroupWare Development Crew

Attachment: dave.hall.vcf
Description: Card for <dave.hall@mbox.com.au>


reply via email to

[Prev in Thread] Current Thread [Next in Thread]