[VIM] Global I.S. S.A. phpYellowpage Version 6.08 (fwd)
security curmudgeon
jericho at attrition.org
Fri Nov 23 23:47:09 UTC 2007
I believe this refers to OSVDB 21428/21429. Interesting vendor response to
a vulnerability.
---------- Forwarded message ----------
From:
To: moderators at osvdb.org
Date: Fri, 8 Jun 2007 03:21:42 -0500
Reply-To: moderators at osvdb.org
Subject: [OSVDB Mods] Global I.S. S.A. phpYellowpage Version 6.08
We are running 2 copies of Global I.S. S.A. phpYellowpage Version 6.08 on
two sites. This product has a vulnerability flaw with SQL injection.
We contacted the vendor and was told to pay $65.00 for their product to be
update with a captcha code. We provide when with an FTP address to access
the sites but we continue to wait for a solution for this annoying problem
to be resolve. As we wait, we continue to clean our database on a daily
basic.
Thanks,
Charles
More information about the VIM
mailing list