Vulnerabilities

看板Bugtraq作者xoxland.時間18年前 (2007/10/10 01:54)推噓0(0推 0噓 0→)

留言0則, 0人參與討論串1/3 (看更多)

New Advisory: modx-0.9.6 http://www.dear-pets.com 鞗鞗鞗⇋ummary鞗鞗霭 Software: modx-0.9.6 Sowtware旧 Web Site: http://www.modxcms.com Versions: 0.9.6 Critical Level: Moderate Type: Multiple Vulnerabilities Class: Remote Status: Unpatched PoC/Exploit: Not Available Solution: Not Available Discovered by: http://www.dear-pets.com 鞗鞗鞖Description鞗鞗霊1. SQL Injection. Vulnerable script: mutate_content.dynamic.php Parameters 螨ocumentDirty鈬袿odVariables鈠is not properly sanitized before being used in SQL query. This can be used to make SQL queries by injecting arbitrary SQL code. Condition: magic_quotes_gpc = off 鞗鞗磒oC/Exploit鞗鞗鞗霭 Waiting for developer(s) reply. 鞗鞗⇋olution鞗鞗鞗霊No Patch available. 鞗鞗鉳redit鞗鞗鞗鞖 Discovered by: http://www.dear-pets.com

‣ 返回看板[ Bugtraq ] 臭蟲

‣ 更多 xoxland. 的文章

文章代碼(AID): #172y1o00 (Bugtraq)