[VIM] Quick Poll Script (code.php id) Remote SQL Injection Vulnerability
George A. Theall
theall at tenablesecurity.com
Thu Nov 13 01:15:24 UTC 2008
Hey str0ke, did you miss milw0rm 7105 back when it came out in August?
The advisory looks nearly identical to http://packetstorm.linuxsecurity.com/0808-exploits/quickpoll-sql.txt
, which maps to CVE-2008-3765 / BID 30724.
And it looks like SecurityFocus for some reason not only created BID
32279 for the milw0rm advisory but also reports the affected script
incorrectly as the product link itself rather than what the advisory
claims are affected.
George
--
theall at tenablesecurity.com
More information about the VIM
mailing list