Today our security software detected and stopped several attacks aiming on getting root privileges on server 10. through SPAW php scripts.

SPAW Editor PHP Edition v 1.x are affected.

To fix it please setup the latest version from here


Also YABB is also have several critical holes discovered.
YaBB SE Version(s): 1.5.4, 1.5.5, 1.5.5b, and probably other versions are vulnurable to SQL ingetions

Unofficial patch can be downloaded here