oss-sec mailing list archives

Re: phpmyvisites 2.3

From: "Steven M. Christey" <coley () linus mitre org>
Date: Tue, 30 Mar 2010 17:41:39 -0400 (EDT)


On Wed, 10 Mar 2010, Henri Salo wrote:

There is a security vulnerability in phpMyVisites 2.3. Is there a CVE
assigned for that issue?

http://www.phpmyvisites.us/phpmv2/CHANGELOG


Use CVE-2009-4763

Notes:

1) SourceForge has recently made it difficult/impossible to obtainchangelogs for new releases, so I can't find any information on theDecember release of ClickHeat to get more details.


2) Consequently, it could be that phpMyVisites is fixing an old ClickHeat
   problem (CVE-2008-5793) but neither is it clear if that ClickHeat is
   even the same product.


- Steve

Current thread:

phpmyvisites 2.3 Henri Salo (Mar 10)
- Re: phpmyvisites 2.3 Anthon Pang (Mar 10)
- Re: phpmyvisites 2.3 Steven M. Christey (Mar 30)
  - Re: phpmyvisites 2.3 Anthon Pang (Mar 30)