[VIM] Clarification on EV130 (fwd)
Steven M. Christey
coley at linus.mitre.org
Fri May 5 12:06:02 EDT 2006
Regarding CVE-2006-2128 (Pro Publish SQL injection)
Some clarification from Alex at evuln on the use of cat.php. He had
mentioned it in the list of affected scripts but didn't provide the
affected parameters, although he did so for the others. Since updated.
- Steve
---------------
Hi,
script: "cat.php"
parameter: "catid"
Updated:
http://evuln.com/vulns/130/description.html
Thanks,
Alex.
More information about the VIM
mailing list