[VIM] Joomla Component YaNC (listid) SQL Injection Vulnerability

str0ke str0ke at milw0rm.com
Thu Jun 26 21:29:05 UTC 2008

Thanks George,

5943 has been removed from the frontend.


George A. Theall wrote:
> Milw0rm 5943 seems to be a dup of milw0rm 3944 / CVE-2007-2792. Both
> involve a SQL injection issue in the 'listid' parameter.
> Btw, just so it's clear, I don't intend these sorts of posts to be
> critical of str0ke but to raise awareness among all vdb maintainers.
> If you'd rather I keep the messages private, let me know.
> George

More information about the VIM mailing list