[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Facebook North Scottsdale Inventory - Remote SQL Injection Vulnerability

To: Ferenc Kovacs <tyra3l@xxxxxxxxx>
Subject: Re: [Full-disclosure] Facebook North Scottsdale Inventory - Remote SQL Injection Vulnerability
From: "research@xxxxxxxxxxxxxxxxxxxxx" <research@xxxxxxxxxxxxxxxxxxxxx>
Date: Thu, 29 Sep 2011 12:14:23 +0200

Am 29.09.2011 11:50, schrieb Ferenc Kovacs:
> "2011-00-00:     Vendor Fix/Patch"

It is a third party application of facebook. Facebook security has no influence 
& can just report the bug to the developers of the applications. The 
vulnerability has been reported  about 2 weeks ago to the developer of the 
application & will be fixed soon.
Future issues will be released after the report & with fix/patch.
(vulnerability-lab.com/upcoming.php)

Best Regards,
*********

-- 
Website: www.vulnerability-lab.com ; vuln-lab.com or vuln-db.com
Contact: admin@xxxxxxxxxxxxxxxxxxxxx or support@xxxxxxxxxxxxxxxxxxxxx


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] Facebook North Scottsdale Inventory - Remote SQL Injection Vulnerability
  - From: research@xxxxxxxxxxxxxxxxxxxxx
- Re: [Full-disclosure] Facebook North Scottsdale Inventory - Remote SQL Injection Vulnerability
  - From: Ferenc Kovacs

Prev by Date: Re: [Full-disclosure] Facebook North Scottsdale Inventory - Remote SQL Injection Vulnerability
Next by Date: [Full-disclosure] GSC Chat Server Authentication Bypass
Previous by thread: Re: [Full-disclosure] Facebook North Scottsdale Inventory - Remote SQL Injection Vulnerability
Next by thread: [Full-disclosure] GSC Chat Server Authentication Bypass
Index(es):
- Date
- Thread