EUVD-2001-1462

Malware in sbrugna...

Joomla JE Quiz Blind SQL Injection

...BEGIN ADVISORY... !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! TITLE: Joomla JE Quiz component BLIND SQL Injection Vulnerability LANGUAGE: PHP DORK: N/A RESEARCHER: B-HUNT3|2 CONTACT: bhunt3ratnospamgmaildotnospamcom TYPE: COMMERCIAL PRICE: $20.00 TESTED ON:...

PT-2007-5158 · Maxdev · Maxdev Md-Pro

Name of the Vulnerable Software and Affected Versions: MAXdev MDPro MD-Pro versions 1.0.8x and earlier Description: The issue allows remote attackers to execute arbitrary SQL commands via the topicid parameter in a view action in the Topics module. Recommendations: For MAXdev MDPro MD-Pro version...