LxCenter HyperVM & Kloxo Support

Forum



Members   Search      Help    Register    Login    Home
Home » Archive » Product Security » Kloxo FCKEditor from 2003 suffer from CVE
Kloxo FCKEditor from 2003 suffer from CVE [message #77014] Sun, 26 September 2010 14:17 Go to next message
heyhey is currently offline heyhey  Singapore
Messages: 9
Registered: June 2009
Member
It appears that Kloxo runs FCKEditor with a version from 2003, which might be having a CVE bug:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3215

Also, there's so many PHP 5.3 deprecation. Why is Kloxo embedding so many libs, and not using the packages that are provided by the distribution? Why is there still some so old PEAR modules in the SVN, when the ones from the distribution could be used?

Report message to a moderator

Re: Kloxo FCKEditor from 2003 suffer from CVE [message #77029 is a reply to message #77014] Tue, 28 September 2010 13:43 Go to previous message
Walter  Brazil
Messages: 866
Registered: February 2009
Location: Florianopolis / BR
Senior Master
Forum Moderator
LxCenter Project Manager
Use the bug-tracker to submit bug reports and feature requests and the Development forums for other inquiries.

Seeing you have a history of complaints (9 out of 9 posts), why not join the development team? You can apply here: http://svn.lxcenter.org/ . Fixing these issues may take less of your time than posting in the forum and filling bug reports. Smile

Report message to a moderator

Previous Topic:phpMyAdmin Cross-Site Scripting Vulnerabilities
Next Topic:passengers can "look after" their luggage from the display.
Goto Forum:
  

[ Syndicate this forum (XML) ] [ RSS ] [ PDF ]

Current Time: Wed Jun 19 01:14:45 EDT 2013

Total time taken to generate the page: 0.01036 seconds
.:: Contact :: Home :: Privacy ::.

Click here to lend your support to: LxCenter and make a donation at www.pledgie.com !

Powered by: FUDforum 3.0.2.
Copyright ©2001-2010 FUDforum Bulletin Board Software