<<<
Date Index
>>>
<<<
Thread Index
>>>
Re: PHPNews SQL injection vulnerability
To
:
bugtraq@xxxxxxxxxxxxxxxxx
Subject
: Re: PHPNews SQL injection vulnerability
From
:
foster@xxxxxx
Date
: 21 Jul 2005 05:58:07 -0000
List-help
: <
mailto:bugtraq-help@securityfocus.com
>
List-id
: <bugtraq.list-id.securityfocus.com>
List-post
: <
mailto:bugtraq@securityfocus.com
>
List-subscribe
: <
mailto:bugtraq-subscribe@securityfocus.com
>
List-unsubscribe
: <
mailto:bugtraq-unsubscribe@securityfocus.com
>
Mailing-list
: contact
bugtraq-help@xxxxxxxxxxxxxxxxx
; run by ezmlm
by the way, to fix vulbnerability, you need to addslashes() $_POST['password'] variable to.
Prev by Date:
[SECURITY] [DSA 764-1] New cacti packages fix several vulnerabilities
Next by Date:
Re: ICMP-based blind performance-degrading attack
Previous by thread:
PHPNews SQL injection vulnerability
Next by thread:
Anonymous Web Attacks via Dedicated Mobile Services
Index(es):
Date
Thread