2 matches found
Debian DSA-1978-1 : phpgroupware - several vulnerabilities
Several remote vulnerabilities have been discovered in phpgroupware, a Web-based groupware system written in PHP. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-4414 A SQL injection vulnerability was found in the authentication module. -...
CVE-2009-4415
CVE-2009-4415 is a directory traversal vulnerability in phpgroupware that allows remote attackers to read arbitrary files via the addressbook/csv_import.php csvfile parameter or to include local files via addressbook/inc/class.uiXport.inc.php conv_type parameter. The issue affects PHPGroupWare 0....