[VIM] e-topbiz Slide Popups 1 php (Auth Bypass) SQL Injection Vulnerabilit

George A. Theall theall at tenablesecurity.com
Sun Jan 3 01:57:29 UTC 2010


Exploit DB #10832 / Bugtraq 37540 looks like a dup of an issue  
reported in November 2008 by D3ViL iR at Q and covered by CVE-2008-6264 /  
Bugtraq 32171 / OSVDB 52278. The difference is in the script name --  
the earlier ids all talk about 'admin.php' while SecurityFocus in the  
newer BID says 'slidepop1.php'. If you look at Exploit DB 10832,  
though, 'slidepop1.php' is actually listed as part of the product URL,  
not the affected script.


George
-- 
theall at tenablesecurity.com





More information about the VIM mailing list