Security Issues in Click and Install Applications
Having to deal with the recent Security Issues in HC 6.1 led me to look into exactly what versions of "Click and Install" applications were available with HC 7, their pay for install open source software.
Before you make any of these available you might want to check the versions being installed on your server and see what the current release version is.
I have made it a point to disable all of these on the one server we have been able to upgrade to 7 so far as I would prefer to not allow our customers to be able to install software with security flaws that they get from us.
Version
SOftware Installed Current
---------------------------------------
bBlog 0.7.6 ???
comersus 7.0.2 7.095
Coppermine 1.4.10 1.4.14 - Security release (Nov 2007)- CSS issues!
Crafty Syntax 2.12.9 2.14.5 (Live Help SOftware)
Forum ??? ???
Gallery 2.1 2.1 2.2.4 This release fixes critical security issues.
Joomla 1.0.12 1.0.13 Multiple Security Issues Fixed in Release
Mambo 4.6.1 4.6.3 On 23 Jan 2008 Issued a security advisory and patch
myLittleAdmin ??? ??? myLittleTools.net
osCommerce 2.2 ??? November 2005 release - Latest version released Jan 2008
phpBB 2.0.18 2.0.22 (legacy Version - current version is 3.0 and was released 12/2007)
phpMyAdmin 2.9.1.1 2.11.4 There are multiple security advisories for versions prior to 2.11.2
PHPSupportTickets ??? 2.2 Appears to be latest version
plogger Beta 2 Beta 3
phpNuke 1.1 or 1.3? 8.1 Appears to be from 2005, version varies in file
Snitz Forums 3.4.05 3.4.06 Various security patches on website
WebCalendar 1.0 1.1.6 Various Security Fixes
Wordpress 2.0 2.0.11 They have security updates for legacy version, current Version 2.3.2
XOOPS 2.0.15 2.0.18 Various security fixes
Zencart 1.3.0.2 1.3.8 Various Security Fixes
Hosting Controller, are you planning on supporting this software and getting the latest versions installed on the server? If so, when???