[prev in list] [next in list] [prev in thread] [next in thread] 

List:       bugtraq
Subject:    PHP-Nuke x.x  AND PostNuke SQL Injection
From:       Pedro Inacio <pedro.inacio () ptnix ! com>
Date:       2002-09-26 18:48:02
[Download RAW message or body]



Hello again,

just to say that PostNuke ( fork of PHP-Nuke ) is vulnerable to the same
bugs
AND
it is possible to inject different SQL code in order to do other "funny" 
but "dangerous" things.

Note to the guys of those projects:
Filter those URL entries!!!

Cheers,

Pedro Inacio

[prev in list] [next in list] [prev in thread] [next in thread]