Posts Tagged ‘Blind SQL’

Multiple Vulnerabilities on CBS Website

CBS (cbs.com) is a popular media website that has been found open to about 17 Blind SQL Injection, this is beside several XSS cross site scripting vulnerabilities that risk website users. D35m0nd142 posted on pastbin his finding with images to vulnerable URL’s. For detecting those vulnerabilities D35m0nd142 used Acunetix one of the widely known program [...]

Share

Blind SQL Injection in Joomla! com_virtuemart <= v1.1.7

One more time Joomla provide us a new vulnerability in one of thier component. This time the vulnerability exists in VirtueMart which is an Open Source E-Commerce solution that can be used together with a Joomla Content Management System (CMS). Steven Seeley & Rocco Calvi from startsec detected the possibility of Blind SQL injection in [...]

Share