ports/www/coppermine 1.4.22

Steve Watt steve at Watt.COM
Sat May 23 19:31:30 UTC 2009

According to http://forum.coppermine-gallery.net/index.php/topic,59551.0.html,
there's a SQL injection vulnerability in coppermine 1.4.22 and earlier.

Looks like the port hasn't caught up yet, and this probably deserves
a portaudit entry, too.

Steve Watt KD6GGD  PP-ASEL-IA          ICBM: 121W 56' 57.5" / 37N 20' 15.3"
 Internet: steve @ Watt.COM                      Whois: SW32-ARIN
   Free time?  There's no such thing.  It just comes in varying prices...

More information about the freebsd-ports mailing list