[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: serendipity SQL Injection vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: serendipity SQL Injection vulnerability
From: <sebastian@xxxxxxxx>
Date: 14 Apr 2005 18:08:40 -0000

In-Reply-To: <20050413202205.7e0c8bb1@xxxxxxxxxxxxxxx>

>Program: serentdipity web blog system
>Version: 0.8beta4
>Module:  exit.php
>Bug type: SQL Injection
>Vendor site: http://www.s9y.org/
>Vendor Informed: Yes

The vendor has NOT been informed.

Prev by Date: Multiple multiple sql injection/errors and xss vulnerabilities in OneWorldStore
Next by Date: Multiple vulnerabilities in Yager 5.24
Previous by thread: serendipity SQL Injection vulnerability
Next by thread: [ GLSA 200504-12 ] rsnapshot: Local privilege escalation
Index(es):
- Date
- Thread