[VIM] vendor dispute: 21687: Jamit Job Board index.php cat Variable SQL Injection (fwd)

security curmudgeon jericho at attrition.org
Mon Aug 14 00:23:16 EDT 2006


CVE-2005-4232
BID 15848
FrSIRT ADV-2005-2879
Secunia 18007
http://pridels.blogspot.com/2005/12/jamit-job-board-24x-sql-inj.html
http://packetstormsecurity.org/0512-advisories/sa18007.txt

---------- Forwarded message ----------
From: Adam M.
To: moderators at osvdb.org
Date: Mon, 14 Aug 2006 12:17:45 +0800
Reply-To: moderators at osvdb.org
Subject: [OSVDB Mods] [Change Request] 21687: Jamit Job Board index.php cat
     Variable SQL Injection

Hello,

Can you please remove the following page from your website:

http://www.osvdb.org/21687

The vulnerability is without any basis and did not actually work.

The vulnerability first appeared on Secuina, however they failed to verify that it was actually correct. The exploit does not work at all.


Regards,

Adam


More information about the VIM mailing list