| To: | bugtraq@securityfocus.com |
|---|---|
| Subject: | Re: Xoops All Version -Articles- Print.PHP (ID) Blind SQL Injection Exploit And PoC |
| From: | andy@sirium.net |
| Date: | 28 Mar 2007 00:02:29 -0000 |
| Delivered-to: | sp-com-lists@consult.net |
| Delivered-to: | bugtraq-list@securepoint.com |
| Delivered-to: | mailing list bugtraq@securityfocus.com |
| Delivered-to: | moderator for bugtraq@securityfocus.com |
| List-help: | <mailto:bugtraq-help@securityfocus.com> |
| List-id: | <bugtraq.list-id.securityfocus.com> |
| List-post: | <mailto:bugtraq@securityfocus.com> |
| List-subscribe: | <mailto:bugtraq-subscribe@securityfocus.com> |
| List-unsubscribe: | <mailto:bugtraq-unsubscribe@securityfocus.com> |
| Mailing-list: | contact bugtraq-help@securityfocus.com; run by ezmlm |
The Articles module has been updated to v1.03, which contains some input sanitising and should negate this exploit. Version 1.03 can be downloaded from http://support.sirium.net/modules/mydownloads/viewcat.php?cid=2 |
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | Re: RE: Xbox 360 Hypervisor Privilege Escalation Vulnerability, 5150sd |
|---|---|
| Next by Date: | [USN-444-1] OpenOffice.org vulnerabilities, Kees Cook |
| Previous by Thread: | Xoops All Version -Articles- Print.PHP (ID) Blind SQL Injection Exploit And PoC, UniquE |
| Next by Thread: | Metasploit Framework 3.0 RELEASED!, H D Moore |
| Indexes: | [Date] [Thread] [Top] [All Lists] |