Biesta Billing version 4.0 Beta suffers from cross site request forgery and directory traversal vulnerabilities.
Monthly Archives: November 2016
Vuln: Mozilla Firefox CVE-2016-9078 URL Redirection Vulnerability
Mozilla Firefox CVE-2016-9078 URL Redirection Vulnerability
Vuln: iCloud Setup for Windows CVE-2016-7583 Remote Code Execution Vulnerability
iCloud Setup for Windows CVE-2016-7583 Remote Code Execution Vulnerability
Vuln: Apple macOS CVE-2016-7584 Security Bypass Vulnerability
Apple macOS CVE-2016-7584 Security Bypass Vulnerability
Vuln: Apple iOS/macOS/tvOS/watchOS CVE-2016-4688 Buffer Overflow Vulnerability
Apple iOS/macOS/tvOS/watchOS CVE-2016-4688 Buffer Overflow Vulnerability
phpMyAdmin4-4.0.10.18-1.el5
phpMyAdmin 4.0.10.18 (2016-11-25)
=================================
This release includes many security fixes of various levels of severity. For full information on the vulnerabilities fixed and mitigation factors for users who are unable to upgrade, refer to the ChangeLog file included with this release and the security announcements at https://www.phpmyadmin.net/security/
phpMyAdmin-4.0.10.18-1.el6
phpMyAdmin 4.0.10.18 (2016-11-25)
=================================
This release includes many security fixes of various levels of severity. For full information on the vulnerabilities fixed and mitigation factors for users who are unable to upgrade, refer to the ChangeLog file included with this release and the security announcements at https://www.phpmyadmin.net/security/
phpMyAdmin-4.4.15.9-1.el7
phpMyAdmin 4.4.15.9 (2016-11-25)
================================
This release includes many security fixes of various levels of severity. For full information on the vulnerabilities fixed and mitigation factors for users who are unable to upgrade, refer to the ChangeLog file included with this release and the security announcements at https://www.phpmyadmin.net/security/
phpMyAdmin-4.6.5.1-2.fc23
phpMyAdmin 4.6.5.1 (2016-11-26)
===============================
A patch-level release fixing two small issues:
* an issue affecting a small number of users using $cfg[‘Servers’][$i][‘hide_db’] or $cfg[‘Servers’][$i][‘only_db’].
* an issue affecting the create table dialog where the partition selection tool was overzealous and made it difficult to create a new table.
There are also minor improvements to the Czech language file.
phpMyAdmin 4.6.5 (2016-11-25)
=============================
A release containing security fixes and bug fixes. Aside from the security improvements, many bugs have been fixed including:
* Fix for expanding in navigation pane
* Reintroduced a simplified version of PmaAbsoluteUri directive (needed with reverse proxies)
* Fix editing of ENUM/SET/DECIMAL field structures
* Improvements to the parser
And many, many more. Please see the ChangeLog for full details of bugs fixes.
phpMyAdmin-4.6.5.1-2.fc24
phpMyAdmin 4.6.5.1 (2016-11-26)
===============================
A patch-level release fixing two small issues:
* an issue affecting a small number of users using $cfg[‘Servers’][$i][‘hide_db’] or $cfg[‘Servers’][$i][‘only_db’].
* an issue affecting the create table dialog where the partition selection tool was overzealous and made it difficult to create a new table.
There are also minor improvements to the Czech language file.
phpMyAdmin 4.6.5 (2016-11-25)
=============================
A release containing security fixes and bug fixes. Aside from the security improvements, many bugs have been fixed including:
* Fix for expanding in navigation pane
* Reintroduced a simplified version of PmaAbsoluteUri directive (needed with reverse proxies)
* Fix editing of ENUM/SET/DECIMAL field structures
* Improvements to the parser
And many, many more. Please see the ChangeLog for full details of bugs fixes.