[Full-disclosure] Knorr.de SQL Injection and XSS Vulnerabilities
poo
skodliv at gmail.com
Mon Mar 5 13:31:16 GMT 2007
I CARE
On 3/4/07, Lolek of TK53 <lolek1337 at googlemail.com> wrote:
>
> Hi,
> On 3/2/07, sbauer at gjl-network.net <sbauer at gjl-network.net> wrote:
> > Author: Sebastian Bauer
> > Web: http://blog.gjl-network.net
> > Date: 01/12/07
> >
> > Vuln. website: http://www.knorr.de
> > Vulnerability: SQL Injection (mainly login authentication bypass + any
> > other SQL inj.
> > possibility), XSS
> > Significance: Very Critical
>
> OMFG who cares.....
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
--
smile tomorrow will be worse
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20070305/6a3f24a8/attachment.html
Full-Disclosure is hosted and sponsored by Secunia.