Pixaria Software
PopPhoto Studio has been updated to patch a serious security vulnerability that could leave a server open to being compromised by malicious attackers by using a specially designed URL to include and execute remote PHP code.
Full details of the vulnerability are described in the Secunia security advisory SA SA20087 published on the 15th of May 2006.
The vulnerability only affects servers where the PHP configuration setting register_globals is turned on. PopPhoto does not require this value to be on and all users are advised to turn it off where possible in addition to applying the new security patch.
An updated version of PopPhoto (version 3.6.1) can be downloaded from the PopPhoto version history page which also provides details of the bug and a link to the file change log where you can see which file has been updated.
This security vulnerability is specific to PopPhoto Studio and does not affect Pixaria Gallery.
Offline Until Monday February 6th
Sunday, January 29, 2012
Pixaria Opposes SOPA and PIPA
Wednesday, January 18, 2012
Pixaria Software Ltd.
Tuesday, January 3, 2012
Pixaria 3.7 Now Available
Monday, January 2, 2012
Active Directory support coming to Pixaria AssetDeck
Sunday, December 4, 2011
Follow Pixaria on Twitter
Sunday, November 20, 2011
Pixaria Gallery 3.6 Now Available
Monday, November 14, 2011
Pixaria Gallery 3.5 Now Available
Monday, October 17, 2011
Updated Translations Coming Soon
Wednesday, September 28, 2011
Pixaria 3.4 Now Available
Saturday, September 10, 2011