Unfixed XSS vulnerability at www.ecs.al

Security researcher baltazar, has submitted on 10/03/2008 a cross-site-scripting XSS vulnerability affecting www.ecs.al, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 19/03/2008. It is currently unfixe...

Blind Sql-Injection in Joomla 1.5 RC3

Thanks to team of Darkc0de.com Blind Sql-Injection in Joomla 1.5 RC3 URL : http://localhost/index.php 1. Parameter = view The following changes were applied to the original request: • Set parameter 'view's value to 'somechars'20+20'article' POC URL :...