[SECURITY] [DSA 3117-1] php5 security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 - - Debian Security Advisory DSA-3117-1 secur...@debian.org http://www.debian.org/security/ Salvatore Bonaccorso December 31, 2014

[KIS-2014-14] Osclass = 3.4.2 (Search::setJsonAlert) SQL Injection Vulnerability

--- Osclass = 3.4.2 (Search::setJsonAlert) SQL Injection Vulnerability --- [-] Software Link: http://osclass.org/ [-] Affected Versions: Version 3.4.2 and

[KIS-2014-15] Osclass = 3.4.2 (ajax.php) Local File Inclusion Vulnerability

-- Osclass = 3.4.2 (ajax.php) Local File Inclusion Vulnerability -- [-] Software Link: http://osclass.org/ [-] Affected Versions: Version 3.4.2 and probably prior

[KIS-2014-16] Osclass = 3.4.2 (contact.php) Unrestricted File Upload Vulnerability

- Osclass = 3.4.2 (contact.php) Unrestricted File Upload Vulnerability - [-] Software Link: http://osclass.org/ [-] Affected Versions: Version 3.4.2

[KIS-2014-18] Mantis Bug Tracker = 1.2.17 (ImportXml.php) PHP Code Injection Vulnerability

- Mantis Bug Tracker = 1.2.17 (ImportXml.php) PHP Code Injection Vulnerability - [-] Software Link: http://www.mantisbt.org/ [-] Affected

[KIS-2014-19] Symantec Web Gateway = 5.2.1 (restore.php) OS Command Injection Vulnerability

-- Symantec Web Gateway = 5.2.1 (restore.php) OS Command Injection Vulnerability -- [-] Software Link: http://www.symantec.com/web-gateway/