[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Geeklog <=1.5.2 'SESS_updateSessionTime()' vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Geeklog <=1.5.2 'SESS_updateSessionTime()' vulnerability
From: nospam@xxxxxxxx
Date: 9 Apr 2009 10:35:10 -0000

As the vendor stated, see:
http://www.geeklog.net/article.php/geeklog-1.5.2sr2

geeklog is also vulnerable to this:
http://www.securityfocus.com/bid/34361/info

actually this should be renamed in 

glFusion 'SESS_updateSessionTime()' SQL Injection Vulnerability

Prev by Date: [ GLSA 200904-11 ] Tor: Multiple vulnerabilities
Next by Date: OpenVAS now beyond 10000 Network Vulnerability Tests
Previous by thread: [ GLSA 200904-11 ] Tor: Multiple vulnerabilities
Next by thread: OpenVAS now beyond 10000 Network Vulnerability Tests
Index(es):
- Date
- Thread