Joomla! 1.5.0 Beta - pcltar.php Remote File Inclusion

Joomla! 1.5.0 Beta - pcltar.php Remote File Inclusion Hi, Joomla! 1.5.0 is in Beta version and "should NOT to be used for live or production sites." Joomla 1.0.12 has a good security but it seems that Joomla 1.5.0 doesnt have a good security approach. Anyway, there is a remote file inclusion in...

Sql injection in Tikiwiki

Hi, There are 2 sql injections in Tikiwiki 1.9.4 and maybe before versions : I There is a call to "getprocess" function in "tiki-g-adminprocesses.php" file, without checking "pid" parameter : File /tiki-g-adminprocesses.php, Line 35 : :: $info = $processManager-getprocess$REQUEST"pid"; Lets take ...