SQL Injection and Multiple XSS in warforge.NEWS
Summary for SQL Injection and Multiple XSS in warforge.NEWS
- Vulnerability
- SQL Injection and Multiple XSS in warforge.NEWS
- Discovered
- 2006.04.14
- Last Update
- 2006.04.24 Exploitation code published
- ID
- EV0125
- CVE
- CVE-2006-1817 CVE-2006-1818
- Risk Level
- medium
- Type
- Multiple Vulnerabilities
- Status
- Unpatched. No reply from developer(s)
- Vendor
- n/a
- Vulnerable Software
- warforge.NEWS
- Version
- 1.0
- PoC/Exploit
- Available
- Solution
- Not available
- Discovered by
- Aliaksandr Hartsuyeu (eVuln.com)
Order Source Code Audit
Defend against hacking by source code audit of your website or web application made by Aliaksandr Hartsuyeu.The order will be done by experts in web security.