| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20111028071237.GE14711@foo.fgeek.fi> Date: Fri, 28 Oct 2011 10:12:37 +0300 From: Henri Salo <henri@...v.fi> To: bugtraq@...urityfocus.com Cc: muuratsalo@...il.com Subject: Re: jara 1.6 sql injection vulnerability On Sun, Oct 23, 2011 at 01:06:07AM +0200, muuratsalo experimental hack lab wrote: > jara 1.6 sql injection vulnerability > > download http://sourceforge.net/projects/jara/files/v1.6/jarav16.zip > > author muuratsalo > contact muuratsalo[at]gmail.com > > exploit > http://localhost/jara/view.php?id=[SQL Injection] Still not fixed. Tried to contact vendor via email (as did muuratsalo) without any luck. http://sourceforge.net/tracker/?func=detail&aid=3428075&group_id=294500&atid=1243901 Best regards, Henri Salo
Powered by blists - more mailing lists