MySQL Security

MySQL Security News, Articles, and Blogs

Get DIRECTV. Save over $180 now!

Browse by Tag

ajax blog blog archive categories code css database database security databases development exploit flat guitar hosting injection internet javascript Links linux menu mysql MySQL Security network new news password perl mysql php php mysql security programming query really simple syndication registerwidget search security select seo server software sql sql injection technology update utf vulnerability web widgetinfo widgetmanager wordpress xml



xoops mylinks module - sql injection

Filed under module, xoops-mylinks, focus, bugtraq-security, module-sql, edit-me, injection, bugtraq-security-focus, sql, atom, mysql

I have found a mysql injection vulnerability in. mylinks xoops module. brokenlink.php page where. $_GET[’lid’] is not validated by intval() …

The rest is here:
xoops mylinks module - sql injection

, , , , , , , , , ,
November 9th, 2007. Comment now »

[waraxe-2007-SA#059] - XSS in WordPress 2.3

Filed under email-post, rsd, adl, asap, permanent-link, utf, atom, xss, edit-me, edit-post, bugtraq-security-focus

“register_globals” must be “on” for this exploit to be successful. Proof of concept:. http://victim.com/wp-admin/edit-post-rows.php?posts_columns[]=alert(123);. //—–> See ya soon and have a nice day

See the rest here:
[waraxe-2007-SA#059] - XSS in WordPress 2.3

, , , , , , , , , ,
October 27th, 2007. Comment now »


 Search Engine Submission   Reg2.us Domain Name Registration   Premium Domain Names


Play Games | Presidential Candidates | Microsoft Log Parser


Cheap Web Hosting