Secunia Security Advisory – Debian has issued an update for phpgroupware. This fixes multiple vulnerabilities, which can be exploited by malicious users to disclose sensitive information and by malicious people to disclose sensitive information, or conduct cross-site scripting and SQL injection attacks.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/85695/sa38297.txt
Source: https://packetstormsecurity.com/files/85695/Secunia-Security-Advisory-38297.html