[VIM] @1 File Store PRO SQL injection - the old gray dupe

str0ke str0ke at milw0rm.com
Tue Aug 25 18:50:29 UTC 2009


Steven M. Christey wrote:
> from 2008: http://www.milw0rm.com/exploits/6040
>
> These vectors for the id parameter in config.php and download.php were
> also disclosed by eVuln in 2006, albeit for a different version (version
> 2006.03.07, non-pro).  See CVE-2006-1278

Are you counting [MIL] 6040 as a dupe from CVE-2006-1278? 


More information about the VIM mailing list