[VIM] Quick Poll Script (code.php id) Remote SQL Injection Vulnerability

George A. Theall theall at tenablesecurity.com
Thu Nov 13 01:15:24 UTC 2008

Hey str0ke, did you miss milw0rm 7105 back when it came out in August?  
The advisory looks nearly identical to http://packetstorm.linuxsecurity.com/0808-exploits/quickpoll-sql.txt 
, which maps to CVE-2008-3765 / BID 30724.

And it looks like SecurityFocus for some reason not only created BID  
32279 for the milw0rm advisory but also reports the affected script  
incorrectly as the product link itself rather than what the advisory  
claims are affected.

theall at tenablesecurity.com

More information about the VIM mailing list