[VIM] false? CVE-2008-6049 / TinyMCE SQL injection

Steven M. Christey coley at linus.mitre.org
Tue Mar 17 20:13:11 UTC 2009

Previous message: [VIM] Morovia Barcode ActiveX 3.6.2 (MrvBarCd.dll) Insecure Method Exploit
Next message: [VIM] false? CVE-2008-6049 / TinyMCE SQL injection
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Researcher: AnGeL25dZ

http://www.milw0rm.com/exploits/7506

As noted by Nico Golde here:

  http://www.openwall.com/lists/oss-security/2009/02/08/1

There's no PHP code.  http://tinymce.moxiecode.com/ says "Javascript
WYSIWYG Editor."

str0ke?

- Steve

Previous message: [VIM] Morovia Barcode ActiveX 3.6.2 (MrvBarCd.dll) Insecure Method Exploit
Next message: [VIM] false? CVE-2008-6049 / TinyMCE SQL injection
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the VIM mailing list