Re: jara 1.6 sql injection vulnerability

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Sun, Oct 23, 2011 at 01:06:07AM +0200, muuratsalo experimental hack lab wrote:
> jara 1.6 sql injection vulnerability
> 
> download  http://sourceforge.net/projects/jara/files/v1.6/jarav16.zip
> 
> author      muuratsalo
> contact     muuratsalo[at]gmail.com
> 
> exploit
> http://localhost/jara/view.php?id=[SQL Injection]

CVE-identifiers for Jara 1.6 issues: http://seclists.org/oss-sec/2011/q4/200

- Henri Salo
[Index of Archives]     [Linux Security]     [Netfilter]     [PHP]     [Yosemite News]     [Linux Kernel]

  Powered by Linux