Monday, 21 December 2009 SQL Injection vuln

The official website of CLFN ( suffers from sql injection attack in bsoftmore.php
A remote attacker can easily get over the site. (Not me actually, i didnt find the login page.) anyway i got the id and passes/ The id and passes are not shown for security here.
Some details:
Vuln: SQL injection
Table name: user
Hope they fix it soon

No comments:

Post a Comment