Network Security: Detailed info on Advisory: CilemNews System <= 1.1 Remote SQL Injection Vulnerability

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Bugtraq

Subject:	Advisory: CilemNews System <= 1.1 Remote SQL Injection Vulnerability
Date:	Fri, 24 Feb 2006 18:16:48 +0200

Subject:

Advisory: CilemNews System <= 1.1 Remote SQL Injection Vulnerability

Date:

Fri, 24 Feb 2006 18:16:48 +0200

--Security Report-- Advisory: CilemNews System <= 1.1 Remote SQL Injection Vulnerability --- Author: Mustafa Can Bjorn "nukedx a.k.a nuker" IPEKCI --- Date: 23/02/06 08:36 PM --- Contacts:{ ICQ: 10072 MSN/Email: nukedx@nukedx.com Web: http://www.nukedx.com } --- Vendor: Cilem (www.cilem.net) Version: 1.1 and prior versions must be affected. About: Via this method remote attacker can inject arbitrary SQL query. Level: Critical --- How&Example: Not available at this time. -- Timeline: * 23/02/2006: Vulnerability found. * 23/02/2006: Contacted with vendor and waiting reply. -- Exploit: Not available at this time.

<Prev in Thread]	Current Thread	[Next in Thread>
Advisory: CilemNews System <= 1.1 Remote SQL Injection Vulnerability, nukedx <=

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	SpeedCommander 11.0 & ZipStar 5.1 & Squeez 5.1 Directory traversal, h e
Next by Date:	[Full-disclosure] Advisory: MyPHPNuke <= 1.8.8 multiple XSS vulnerabilities, nukedx
Previous by Thread:	SpeedCommander 11.0 & ZipStar 5.1 & Squeez 5.1 Directory traversal, h e
Next by Thread:	[Full-disclosure] Advisory: MyPHPNuke <= 1.8.8 multiple XSS vulnerabilities, nukedx
Indexes:	[Date] [Thread] [Top] [All Lists]

Previous by Date:

SpeedCommander 11.0 & ZipStar 5.1 & Squeez 5.1 Directory traversal, h e

Next by Date:

[Full-disclosure] Advisory: MyPHPNuke <= 1.8.8 multiple XSS vulnerabilities, nukedx

Previous by Thread:

SpeedCommander 11.0 & ZipStar 5.1 & Squeez 5.1 Directory traversal, h e

Next by Thread:

[Full-disclosure] Advisory: MyPHPNuke <= 1.8.8 multiple XSS vulnerabilities, nukedx

Indexes:

[Date] [Thread] [Top] [All Lists]