[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [ECHO_ADV_103$2009] taifajobs <= 1.0 (jobid) Remote SQL Injection Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: [ECHO_ADV_103$2009] taifajobs <= 1.0 (jobid) Remote SQL Injection Vulnerability
From: tiha@xxxxxxxxxxxx
Date: Tue, 31 Mar 2009 02:07:13 -0600

A fix has been done on this problem, one can no longer pass sql scripts and 
validation is done to ensure that the jobid actually exist before executing of 
and sql script

Prev by Date: aspWebCalendar Free Edition bug
Next by Date: Cisco ASA5520 Web VPN Host Header XSS
Previous by thread: aspWebCalendar Free Edition bug
Next by thread: Cisco ASA5520 Web VPN Host Header XSS
Index(es):
- Date
- Thread