Date: Sat, 23 May 2009 12:03:25 -0700 From: Steve Watt <steve@Watt.COM> To: miwi@FreeBSD.org Cc: ports@FreeBSD.org Subject: ports/www/coppermine 1.4.22 Message-ID: <20090523190325.GA52562@wattres.Watt.COM>
next in thread | raw e-mail | index | archive | help
According to http://forum.coppermine-gallery.net/index.php/topic,59551.0.html, there's a SQL injection vulnerability in coppermine 1.4.22 and earlier. Looks like the port hasn't caught up yet, and this probably deserves a portaudit entry, too. Regards, -- Steve Watt KD6GGD PP-ASEL-IA ICBM: 121W 56' 57.5" / 37N 20' 15.3" Internet: steve @ Watt.COM Whois: SW32-ARIN Free time? There's no such thing. It just comes in varying prices...
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20090523190325.GA52562>