Ticket #510 (closed defect: fixed)
SQL injection in ajax.php
Reported by: | reporter | Owned by: | mbonetti |
---|---|---|---|
Priority: | normal | Milestone: | |
Component: | BUGS | Version: | |
Severity: | normal | Keywords: | |
Cc: |
Description
There are several unsanitized SQL queries in ajax.php (e.g. expsetState or expgetFeedContent functions), exploitation is trivial (email me for PoC), SQL and script-injection possible.
~kuze
PS: Hey mbi ;)
Change History
Note: See
TracTickets for help on using
tickets.