Vote! Pro PHP “eval()” Injection Vulnerability - Secunia

Vote! Pro PHP “eval()” Injection Vulnerability - Secunia
Vote! Pro PHP “eval()” Injection VulnerabilitySecunia, UK - 17 hours agoInput passed to the “poll_id” parameter in poll_frame.php is not properly sanitised before being used in “eval()” calls. This can be exploited to inject and …Enthusiast Cross-Site Scripting and SQL Injection SecuniaPostNuke “cover” Cross-Site Scripting Vulnerability SecuniaWebsite Baker “REMEMBER_KEY” Cookie SQL Injection Secuniaall 7 news articles

January 24, 2007 @ 10:19 AM · Filed under Uncategorized
Permalink        No Comments

Watch out for PHP holes - Computerworld Australia

Watch out for PHP holes - Computerworld Australia
Watch out for PHP holesComputerworld Australia, Australia - 8 hours ago”PHP is an extremely hacked application type because it allows server-side scripts to happen on a Web site. This script is communicating back to the server, …

January 24, 2007 @ 10:19 AM · Filed under Uncategorized
Permalink        No Comments

Vote! Pro “poll_id” Parameter Handling Remote PHP Code Injection … - FrSIRT

Vote! Pro “poll_id” Parameter Handling Remote PHP Code Injection … - FrSIRT
Vote! Pro “poll_id” Parameter Handling Remote PHP Code Injection …FrSIRT, France - 1 hour agoThis issue is due to input validation errors in various scripts (eg “poll_frame.php”) that does not properly validate certain parameters (eg “poll_id”) …Check Point Connectra “params.php” Cookie Handling Security Bypass … FrSIRTMySpeach “my_ms[root]” Parameter Handling Remote PHP File … FrSIRTComVironment “inc_dir” Parameter Handling Remote PHP File … FrSIRTFrSIRTall 19 news articles

January 24, 2007 @ 10:19 AM · Filed under Uncategorized
Permalink        No Comments