[VIM] e-topbiz Slide Popups 1 php (Auth Bypass) SQL Injection Vulnerabilit
George A. Theall
theall at tenablesecurity.com
Sun Jan 3 01:57:29 UTC 2010
Exploit DB #10832 / Bugtraq 37540 looks like a dup of an issue
reported in November 2008 by D3ViL iR at Q and covered by CVE-2008-6264 /
Bugtraq 32171 / OSVDB 52278. The difference is in the script name --
the earlier ids all talk about 'admin.php' while SecurityFocus in the
newer BID says 'slidepop1.php'. If you look at Exploit DB 10832,
though, 'slidepop1.php' is actually listed as part of the product URL,
not the affected script.
George
--
theall at tenablesecurity.com
More information about the VIM
mailing list