| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <AANLkTi=fnkXB-G-ZS-zfJDhxDFM=8i96Ru=M_ZVA7ZRR@mail.gmail.com>
Date: Tue, 30 Nov 2010 23:47:40 +0000
From: Benji <me@...ji.com>
To: Maciej Gojny <vuln@...ko-security.com>
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: new facebook SQL injection vulnerability
so if I upload a 'hacked by benji' html file to my google sites account, by
your logic this would count as hacking Google.
Cant wait to see The Register report about this.
2010/11/30 Maciej Gojny <vuln@...ko-security.com>
> Hello Full Disclosure !
>
> Today i have found next SQL injection in *facebook.com*
> *
> *
> *Details:*
> *
> *
> http://blog.ariko-security.com/?p=82
>
> Full advisory will be released soon!
>
> Regards,
>
> Maciej Gojny
>
>
> Ariko-Security
> Rynek Glowny 12
> 32-600 Oswiecim
> tel:. +48 33 4741511 mobile: +48 784086818
> (Mo-Fr 10.00-20.00 CET)
>
> Ariko-Security Sp. z o.o. z siedzibą w Oświęcimiu , zarejestrowana przez
> Sąd Rejonowy dla m. Krakowa-Śródmieścia, XII Wydział Gospodarczy Krajowego
> Rejestru Sądowego, KRS: 00000358273, NIP: 549-239-90-67, REGON 121262172
>
>
>
>
>
>
>
>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
Content of type "text/html" skipped
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists