Newest Vulnerabilities in php apps

Filed under
Security

"Multiple vulnerabilities in two popular open-source projects-phpMyAdmin and phpBB-could put users at risk of cross-site scripting and information disclosure attacks, security researchers warned Thursday."

"The most serious flaws could lead to arbitrary program execution if PHP safe mode is off and external transformations are activated as well as allowing the disclosure of the full path to system files."

Full Story.