SQL Injection Vulnerability

SQL injection is a code injection technique, used to attack data-driven applications, in which malicious SQL statements are inserted into an entry field for execution (e.g. to dump the database contents to the attacker).[1

CVE-2014-9558 SmartCMS Multiple SQL Injection Security Vulnerability       Exploit Title: Smartwebsites SmartCMS v.2 Multiple SQL Injection Security Vulnerabilities Product: SmartCMS v.2 Vendor: Smartwebsites Vulnerable Versions: v.2 Tested Version: v.2 Advisory Publication: Jan 22, 2015 Latest Update: Jan 22, 2015 Vulnerability Type: Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) …

Continue reading CVE-2014-9558 SmartCMS Multiple SQL Injection Security Vulnerability

CVE-2014-9560  Softbb.net SoftBB SQL Injection Security Vulnerability     Exploit Title: Softbb.net SoftBB /redir_last_post_list.php post Parameter SQL Injection Product: SoftBB (mods) Vendor: Softbb.net Vulnerable Versions: v0.1.3 Tested Version: v0.1.3 Advisory Publication: Jan 10, 2015 Latest Update: Jan 10, 2015 Vulnerability Type: Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) (CWE-89) CVE …

Continue reading CVE-2014-9560 Softbb.net SoftBB SQL Injection Security Vulnerability

 SINGAPORE: Call them cybersecurity vigilantes if you will, or “white hats” – as they are known in the hacking world. Mr Wang Jing and Mr Zhao Hainan are part of a growing group of individuals who are taking it upon themselves to test the security of information systems in organisations and report security flaws.   Earlier …

Continue reading WHITE HAT HACKERS TESTING SECURITY OF COMPUTER SYSTEMS IN SINGAPORE