Let's see what we have for the past week:


Two new not-so-critical security advisories released from Secunia

If you're using PHP Labs' proFile software or CityPost's Simple PHP Upload software, you need to pay attention. Advisories from secunia.com show less-critical exploits; and while no patch is available for either vendor yet, you can edit your own source code to prevent the cross-scripting attacks. More info is available at http://secunia.com/advisories/15010/ and http://secunia.com/advisories/15027/.


MySQL 5.0.4 (beta) released

Numerous bug fixes and added features await you at http://dev.mysql.com/downloads/mysql/5.0.html. You can read about the details by going to http://dev.mysql.com/doc/mysql/en/news-5-0-4.html


MySQL Users Conference wrapped up with a bow

Couldn't afford to fly to Santa Clara last week? Don't worry about it! You can get the nutshell version, and see a fabulous picture of their 10th anniversary cake by reading Daniel Steinberg's report at http://www.onlamp.com/pub/a/onlamp/2005/04/20/dolphinatmySQL.html. Or if you'd prefer to read about various individuals' escapades during the conference, a veritable blogfest is available at http://www.planetmysql.org/. Geez, it's almost as good as being there.


XOOPS 2.0.10 released

The newest stable release of XOOPS is ready and waiting for you to download (or upgrade if you are already a XOOPSer). You can download and read more about the security features and "core module" changes at http://www.xoops.org/.


CVS issues a security update in stable 1.11.20 & feature 1.12.12

This update fixes CAN-2005-0753 and other potentially exploitable bugs, and if you are currently using this, you are encouraged to update. Downloads are available at https://ccvs.cvshome.org/servlets/ProjectDocumentList.


Thinkphp.de's perturbed at the "architects of PHP"

A recent blog post on thinkphp.de cautions Zend about their choice of words in a recent press release. (Should we tell them that a Google of "architects of php" on the Zend site itself produces 52 results?). If you've got strong opinions about it, let the world know at http://blog.thinkphp.de/.


Better hurry if you want to tan while you learn PHP

Now that's multi-tasking! php|architect announced they would only be taking registrations for php|tropics until May 1, so if you plan on going, you'd better register soon. Details can be found at http://www.phparch.com/news/2158.


See you next week with more news and tidbits from the PHP world!