Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 527
Alerts This Week
Warning Icon 1 527

Gentoo: GLSA-200504-24 Normal: eGroupWare XSS and SQL Injection Risks

gentoo
Calendar Grey April 30, 2005
Scroller Gentoo
Numerous vulnerabilities related to SQL injection and XSS have been identified in eGroupWare, putting users at risk. A software upgrade is essential to guard against potential threats.
eGroupWare is affected by several SQL injection and cross-site scripting (XSS) vulnerabilities.

Summary

Gentoo Linux Security Advisory GLSA 200504-24 https://security.gentoo.org/ Severity: Normal Title: eGroupWare: XSS and SQL injection vulnerabilities Date: April 25, 2005 Bugs: #89517 ID: 200504-24

Synopsis ======= eGroupWare is affected by several SQL injection and cross-site scripting (XSS) vulnerabilities.
Background ========= eGroupWare is a suite of web-based group applications including calendar, address book, messenger and email.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 www-apps/egroupware < 1.0.0.007 >= 1.0.0.007
========== Multiple SQL injection and cross-site scripting vulnerabilities have been found in several eGroupWare modules.
Impact ====...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround